Massive Summer Special Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: netdisc

Certensure Logo
  1. Home
  2. AccessData
  3. AccessData Certification
  4. A30-327 - AccessData Certified Examiner

AccessData A30-327 AccessData Certified Examiner Exam Practice Test

Demo: 9 questions
Total 60 questions
Get A30-327 Full Access Download A30-327 PDF

AccessData Certified Examiner Questions and Answers

Question 1

Which three items are contained in an Image Summary File using FTK Imager? (Choose

three.)

Options:

A.

MD5

B.

CRC

C.

SHA1

D.

Sector Count

E.

Cluster Count

Question 2

What is the most effective method to facilitate successful password recovery?

Options:

A.

Art of War

B.

Entropy Test

C.

Advanced EFS Attack

D.

Primary Dictionary Attack

Question 3

When using FTK Imager to preview a physical drive, which number is assigned to the first logical volume of an extended partition?

Options:

A.

2

B.

3

C.

4

D.

5

Question 4

Click the Exhibit button.

When decrypting EFS files in a case, you receive the result shown in the exhibit. What is the most plausible explanation for this result?

Options:

A.

The encrypted file was corrupt.

B.

A different user encrypted the remaining encrypted file.

C.

The hash value of the remaining encrypted file did not match.

D.

The remaining encrypted file had previously been bookmarked.

E.

An incorrect CRC value for the $EFS certificate was applied by the user.

Question 5

You have processed a case in FTK using all the default options. The investigator supplies you with a list of 400 names in an electronic format. What is the quickest way to search

unallocated space for all of these names?

Options:

A.

build a dtSearch string with all 400 names

B.

create a Regular Expression with all the names

C.

make an imported text file of the names in Live Search

D.

use an imported text file containing the names in Indexed Search

Question 6

What are two functions of the Summary Report in Registry Viewer? (Choose two.)

Options:

A.

adds individual key values

B.

is a template for other registry files

C.

displays investigator keyword search results

D.

permits searching of registry values based on key headers

Question 7

Click the Exhibit button.

You need to search for specific data that are located in a Microsoft Word document. You do not know the exact spelling of this datA. Using the Index Search Options as displayed in the exhibit, which changes do you make in the Broadening Options and Search Limiting Options containers?

Options:

A.

check the Fuzzy box;

check the File Name Pattern box;

type *.doc in the pattern container

B.

check the Stemming box;

check the File Name Pattern box;

type *.doc in the pattern container

C.

check the Synonym box;

check the File Name Pattern box;

type *.doc in the pattern container

D.

check the Stemming box;

check the File Name Pattern box;

type %.doc in the pattern container

Question 8

In FTK, which two formats can be used to export an E-mail message? (Choose two.)

Options:

A.

raw format

B.

XML format

C.

PDF format

D.

HTML format

E.

binary format

Question 9

After creating a case, the Encrypted Files container lists EFS files. However, no decrypted

sub- items are present. All other necessary components for EFS decryption are present in the case. Which two files must be used to recover the EFS password for use in FTK? (Choose two.)

Options:

A.

SAM

B.

system

C.

SECURITY

D.

Master Key

E.

FEK Certificate

Load More A30-327 Questions
Demo: 9 questions
Total 60 questions
Get A30-327 Full Access Download A30-327 PDF