WGU Course C840 -
Digital Forensics in Cybersecurity Questions & Answers
1. Malware forensics is also known as internet forensics.
A True
B False ANS : B
2. The Privacy Protection Act (PPA) of 1980 protects journalists from
beingrequired to turn over to law enforcement any work product or
documentarymaterial, including sources, before it is disseminated to
the public.
A True
B False ANS : A
3. The term testimonial evidence refers to the process of examining
mali-cious computer code.
A True
B False ANS : B
4. Evidence need not be locked if it is at a police station.
A True
,B False ANS : B
5. Real evidence means physical objects that can be touched, held,
or di-rectly observed, such as a laptop with a suspect's fingerprints
on it, or ahandwritten note.
A True
B False ANS : A
6. The FBI is the premier federal agency tasked with combating
cybercrime.
A True
B False ANS : B
7. When cataloging digital evidence, the primary goal is to do what?
A Make bitstream images of all hard
drives.B Keep the computer from being
turned off.
C Keep evidence from being removed from the
scene.D Preserve evidence integrity. ANS : D
,8. Your roommate can give consent to search your computer.
A True
B False ANS : B
9. The Windows Registry is essentially a repository of all settings,
software,and parameters for Windows.
A True
B False ANS : A
10. The term internet forensics refers to information that forensic
specialistsuse to support or interpret real or documentary evidence;
for example, to demonstrate that the fingerprints found on a keyboard
are those of a specificindividual.
A True
B False ANS : B
11. PROM can be programmed only once. Data is not lost when
power isremoved.
A True
B False ANS : A
12. In a computer forensics investigation, describes the route
thatevidence takes from the time you find it until the case is closed or
goes to court.
, A Policy of
separationB Rules
of evidence C Law
of probability D
Chain of custody
ANS : D
13. The objective in computer forensics is to recover, analyze, and
present computer-based material in such a way that it can be used as
evidence in acourt of law.
A True
B False ANS : A
14. Demonstrative evidence means information that helps explain
other ev-idence. An example of demonstrative evidence is a chart
that explains a
Digital Forensics in Cybersecurity Questions & Answers
1. Malware forensics is also known as internet forensics.
A True
B False ANS : B
2. The Privacy Protection Act (PPA) of 1980 protects journalists from
beingrequired to turn over to law enforcement any work product or
documentarymaterial, including sources, before it is disseminated to
the public.
A True
B False ANS : A
3. The term testimonial evidence refers to the process of examining
mali-cious computer code.
A True
B False ANS : B
4. Evidence need not be locked if it is at a police station.
A True
,B False ANS : B
5. Real evidence means physical objects that can be touched, held,
or di-rectly observed, such as a laptop with a suspect's fingerprints
on it, or ahandwritten note.
A True
B False ANS : A
6. The FBI is the premier federal agency tasked with combating
cybercrime.
A True
B False ANS : B
7. When cataloging digital evidence, the primary goal is to do what?
A Make bitstream images of all hard
drives.B Keep the computer from being
turned off.
C Keep evidence from being removed from the
scene.D Preserve evidence integrity. ANS : D
,8. Your roommate can give consent to search your computer.
A True
B False ANS : B
9. The Windows Registry is essentially a repository of all settings,
software,and parameters for Windows.
A True
B False ANS : A
10. The term internet forensics refers to information that forensic
specialistsuse to support or interpret real or documentary evidence;
for example, to demonstrate that the fingerprints found on a keyboard
are those of a specificindividual.
A True
B False ANS : B
11. PROM can be programmed only once. Data is not lost when
power isremoved.
A True
B False ANS : A
12. In a computer forensics investigation, describes the route
thatevidence takes from the time you find it until the case is closed or
goes to court.
, A Policy of
separationB Rules
of evidence C Law
of probability D
Chain of custody
ANS : D
13. The objective in computer forensics is to recover, analyze, and
present computer-based material in such a way that it can be used as
evidence in acourt of law.
A True
B False ANS : A
14. Demonstrative evidence means information that helps explain
other ev-idence. An example of demonstrative evidence is a chart
that explains a
