• Home
  • Blogs
  • GIAC GCCC Premium Exam Engine pdf - Download Free Updated 95 Questions [Q39-Q59]

GIAC GCCC Premium Exam Engine pdf - Download Free Updated 95 Questions [Q39-Q59]

Share

GIAC GCCC Premium Exam Engine pdf - Download Free Updated 95 Questions

Verified GCCC Bundle Real Exam Dumps PDF

NEW QUESTION # 39
Which of the following is used to prevent spoofing of e-mail addresses?

  • A. DNS Security Extensions
  • B. Simple Mail Transfer Protocol
  • C. Sender Policy Framework
  • D. Public-Key Cryptography

Answer: C


NEW QUESTION # 40
Which of the following best describes the CIS Controls?

  • A. Technical controls designed to provide protection from the most damaging attacks based on current threat data
  • B. Technical controls designed to augment the NIST 800 series
  • C. Technical, administrative, and policy controls based on current regulations and security best practices
  • D. Technical, administrative, and policy controls based on research provided by the SANS Institute

Answer: A


NEW QUESTION # 41
An organization is implementing a control within the Application Software Security CIS Control. How can they best protect against injection attacks against their custom web application and database applications?

  • A. Configure the web server to use Unicode characters only
  • B. Filter input to only allow safe characters and strings
  • C. Check user input against a list of reserved database terms
  • D. Ensure the web application server logs are going to a central log host

Answer: B


NEW QUESTION # 42
Dragonfly Industries requires firewall rules to go through a change management system before they are configured. Review the change management log. Which of the following lines in your firewall ruleset has expired and should be removed from the configuration?

  • A. access-list inbound permit tcp 8.8.0.0 0.0.0.255 10.10.12.252 eq 8080
  • B. access-list outbound deny tcp any host 74.125.228.2 eq www
  • C. access-list outbound permit tcp host 10.1.1.7 any eq smtp
  • D. access-list inbound permit tcp host 8.8.207.97 host 10.10.12.100 eq ssh

Answer: D


NEW QUESTION # 43
John a network administrator at Northeast High School. Faculty have been complaining that although they can detect and authenticate to the faculty wireless network, they are unable to connect. While troubleshooting, John discovers that the wireless network server is out of DHCP addresses due to a large number of unauthorized student devices connecting to the network. Which course of action would be an effective temporary stopgap to secure the network until a permanent solution can be found?

  • A. Limit access to allowed MAC addresses
  • B. Change the password immediately
  • C. Increase the size of the DHCP pool
  • D. Shorten the DHCP lease time

Answer: B


NEW QUESTION # 44
As part of an effort to implement a control on E-mail and Web Protections, an organization is monitoring their webserver traffic. Which event should they receive an alert on?

  • A. The number of website hits is higher that the daily average
  • B. The logfiles of the webserver are rotated and archived
  • C. The website issues a RST to a client after the connection is idle
  • D. The website does not respond to a SYN packet for 30 minutes

Answer: D


NEW QUESTION # 45
If an attacker wanted to dump hashes or run wmic commands on a target machine, which of the following tools would he use?

  • A. Mimikatz
  • B. OpenVAS
  • C. Metasploit

Answer: C


NEW QUESTION # 46
How often should the security awareness program be communicated to employees?

  • A. Annually
  • B. Continuously
  • C. Monthly
  • D. At orientation and review times

Answer: B


NEW QUESTION # 47
An attacker is able to successfully access a web application as root using ' or 1 = 1 . as the password. The successful access indicates a failure of what process?

  • A. URL Encoding
  • B. Account Management
  • C. Output Sanitization
  • D. Input Validation

Answer: D


NEW QUESTION # 48
Which of the following should be measured and analyzed regularly when implementing the Secure Configuration for Hardware and Software on Mobile Devices, Laptops, Workstations, and Servers CIS Control?

  • A. What percentage of the organization's applications are using sandboxing products
  • B. How long does it take to remove unauthorized software from the organization's systems
  • C. How long does it take to identify new unauthorized listening ports on the network systems
  • D. What percentage of assets will have their settings enforced and redeployed
  • E. What percentage of systems in the organization are using Network Level Authentication (NLA)

Answer: D


NEW QUESTION # 49
Which of the following baselines is considered necessary to implement the Boundary Defense CIS Control?

  • A. Network Traffic/Service Baseline
  • B. Network Device Configuration Baselines
  • C. Multi-Factor Authentication Standard
  • D. Network Information Flow

Answer: D


NEW QUESTION # 50
Which of the options below will do the most to reduce an organization's attack surface on the internet?

  • A. Deploy antivirus software on internet-facing hosts, and ensure that the signatures are updated regularly
  • B. Ensure only necessary services are running on Internet-facing hosts, and that they are hardened according to best practices
  • C. Deploy an access control list on the perimeter router and limit inbound ICMP messages to echo requests only
  • D. Ensure that rotation of duties is used with employees in order to compartmentalize the most important tasks

Answer: B


NEW QUESTION # 51
An organization has failed a test for compliance with a policy of continual detection and removal of malicious software on its network. Which of the following errors is the root cause?

  • A. The security console alerted when a host anti-virus ran whitelisted software
  • B. A newly discovered vulnerability was not detected by the intrusion detection system
  • C. A host ran malicious software that exploited a vulnerability for which there was no patch
  • D. The intrusion prevention system failed to update to the newest signature list

Answer: D


NEW QUESTION # 52
Janice is auditing the perimeter of the network at Sugar Water InC. According to documentation, external SMTP traffic is only allowed to and from 10.10.10.25. Which of the following actions would demonstrate the rules are configured incorrectly?

  • A. Receive spam from a known bad domain
  • B. Receive mail at Sugar Water Inc. account using Outlook as a mail client
  • C. Successfully deliver mail from another host inside the network directly to an external contact
  • D. Successfully deliver mail from web client using another host inside the network to an external contact.

Answer: C


NEW QUESTION # 53
Which of the following is a requirement in order to implement the principle of least privilege?

  • A. Mandatory Access Control (MAC)
  • B. Data classification
  • C. Discretionary Access Control (DAC)
  • D. Data normalization

Answer: B


NEW QUESTION # 54
Which of the following actions would best mitigate against phishing attempts such as the example below?

  • A. Having employee's complete user awareness training
  • B. Recommending against the use of Google Docs
  • C. Making web filters to prevent accessing Google Docs
  • D. Establishing email filters to block no-reply address emails

Answer: A


NEW QUESTION # 55
Given the audit finding below, which CIS Control was being measured?

  • A. Controlled Access Based on the Need to Know
  • B. Inventory and Control of Hardware Assets
  • C. Limitation and Control of Network Ports, Protocols and Services
  • D. Secure Configurations for Hardware and Software on Laptops, Workstations, and Servers
  • E. Controlled Use of Administrative Privilege

Answer: E


NEW QUESTION # 56
Which of the following is necessary for implementing and automating the Continuous Vulnerability Assessment and Remediation CIS Control?

  • A. System Configuration Enforcement System
  • B. Patch Management System
  • C. Penetration Testing System
  • D. Software Whitelisting System

Answer: B


NEW QUESTION # 57
How can the results of automated network configuration scans be used to improve the security of the network?

  • A. Scanners can correct network configurations issues
  • B. Reports can be sent to the CIO for performance benchmarks
  • C. Results can be included in audit evidence failures
  • D. Results can be provided to network engineers as actionable feedback

Answer: D


NEW QUESTION # 58
An organization has implemented a policy to detect and remove malicious software from its network. Which of the following actions is focused on correcting rather than preventing attack?

  • A. Disabling autorun features on all workstations on the network
  • B. Using Network access control to disable communication by hosts with viruses
  • C. Training users to recognize potential phishing attempts
  • D. Configuring a firewall to only allow communication to whitelisted hosts and ports

Answer: B


NEW QUESTION # 59
......

Pass Your GIAC Exam with GCCC Exam Dumps: https://pass4sure.trainingquiz.com/GCCC-training-materials.html

Related Blogs

more
GIAC GCCC Certification Practice Exam

TrainingQuiz is to offer the best high-quality and efficient Quiz Training materials for candidates to prepare well and efficiently. If you are determined to pass exam one-shot, our Training Materials will be helpful for you. Come and choose us TrainingQuiz.

Latest Update

Useful Links

Contact Us

Our Working Time: ( GMT 0:00-15:00 )
From Monday to Saturday

Support: Contact now 

If you have any question please leave me your email address, we will reply and send email to you in 12 hours.

Copyright © 2026 TRAININGQUIZ.COM. All rights reserved. All trademarks are the property of their respective owners and we don't provide actual questions from any vendor. Privacy Policy