Weekend Sale Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: xmas50

GIAC GASF - GIAC Advanced Smartphone Forensics

GIAC GASF Premium Access     Download Demo    
Page: 1 / 3
Total 75 questions

Which of the following is a unique 56 bit number assigned to a CDMA handset?

A.

Mobile Station International Subscriber Directory Number (MSISDN)

B.

Electronic Serial Number (ESN)

C.

International Mobile Equipment Identifier (IMEI)

D.

Mobile Equipment ID (MEID)

Where would an examiner find evidence of an iOS update to device from one version to another?

A.

NOR memory

B.

System partition

C.

Data partition

D.

SIM card

Which of the following is of most concern when attempting to root an Android device such as Google Glass

when conducting a forensic acquisition?

A.

Rooting this device will overwrite the data partition

B.

The manufacturer warranty is voided

C.

Device security is altered

D.

Traces of the root are left behind

Which of the following devices below runs the Apple iOS operating system?

A.

Apple TV

B.

MacBook Pro

C.

iPod Touch

D.

Apple Watch

Which of the following files provides the most accurate reflection of the device’s date/timestamp related to the

last device wipe?

A.

/private/var/mobile/Library/AddressBook/AddressBook.sqlitedb

B.

/private/var/mobile/Applications/com.apple.mobilesafari/Library/history.db

C.

/private/var/mobile/Applications/com.viber/Library/Prefernces/com.viber.plist

D.

/private/var/mobile/Applications/net.whatsapp.WhatsApp/Library/pw.dat

During the forensic analysis of a Nokia Symbian phone, you receive a SD card with files in the Nokia\Content

Copier folder. What data is present to examine?

A.

Encryption keys

B.

User created images

C.

Logon credentials

D.

Backup files

What is often more of a challenge with mobile forensics than other areas of forensics?

A.

Analysis and Reporting of Information

B.

Isolation of devices

C.

Identification of evidence

D.

Evidence collection

Following the introduction of iMessage with the firmware release iOS 5, devices began storing date/

timestamps in which of the following formats?

A.

UNIXEPOCH

B.

PDU SMS timestamp

C.

UNIXEPCH

D.

Mac epoch

What is the extension used for BlackBerry 10 backup files?

A.

.APK

B.

.BBB

C.

.ZIP

D.

.IPD

What information can you determine by reviewing the (bp2p) file from a BlackBerry OS10 handset?

A.

Cloud accounts

B.

Bluetooth pairings

C.

Paired computers

D.

Connected Wireless Access points