Verified Answers
What Formate is google chrome cookies? - ✔✔SQLite Formate
What does the relative identifier (RID0 of 501 identify? - ✔✔a guest account
how does IMAP differ from POP? - ✔✔IMAP sending, POP receiving
for a multi-segment email, which MIME header keyword will it start with? - ✔✔_PART_
What formate is Microsoft edge cookies? - ✔✔SQLite
what is the return-path field? - ✔✔the address where the undeliverable email will be sent
what does IMAP stand for? - ✔✔Internet Message Access Protocol
what formate is google chrome history in? - ✔✔SQLite
all user profiles contain which folders? - ✔✔\user\$USER$\documents
how do you ensure that a distributed report is not altered? - ✔✔PDF w digital signature
closed encryption containers may sometimes... - ✔✔be recovered from RAM
,because google chrome syncs data across multiple platforms, what may happen to artifacts? -
✔✔generate from other devices
what formate are google chrome passwords? - ✔✔SQLite
what does SMTP stand for? - ✔✔Simple Mail Transfer Protocol
how do we lose volatile data from RAM? - ✔✔pull the plug
True or False: Employee misconduct involves employees not abiding by their organizations
policies - ✔✔true
how any clusters does FAT16 support? - ✔✔16-bit
what makes changes to the operating system to prevent writing on the device? - ✔✔software
write blocker
X-Ways Forensics has a-built in timeline creation utility called: - ✔✔event list
what does compressing forensic image files do? - ✔✔increases acquisition time
the return COIS COOIS COOOIS COOOOIS is a return from what expression - ✔✔CO+IS
is hard drive capacity increasing or decreasing at a phenomenal rate? - ✔✔increasing
if you miss the catch key for the BOIS and start the boot process in the host operating system
you must_____ or else the logs will be affected - ✔✔document that it occurred
, what is determining your capabilities in the field or the lab for? - ✔✔pre-investigation
considerations
what are statements form an organization addressing specific issues? - ✔✔policies
what is Ex01? - ✔✔updated version of E01
the return of COIS COBS CO1S CO@S is from what expression? - ✔✔CO.S
1. follow proper processes
2. using proper methodologies
3. using proper procedures
these 3 things are for? - ✔✔proper digital forensic investigations
define sectors per track, number of heads, number of cylinders, number tracks, details of how
the data is stored - ✔✔drive geometry of a platter drive
what does wear leveling, trim, and garbage collection do for an SSD? - ✔✔function properly
true or false: a VBR is used by the system to boot the operating system in that volume, an
operating system-specific artefact created when a partition is formatted, and at sector zero of
the partition - ✔✔true
what command extracts and processes events in a single step and is a command-line interface
(CLI) tool? - ✔✔Plaso's psteal
Social engineering may use ____ techniques, performed by ____ and may use _____ tools -
✔✔phishing, script kiddies, automated