Axiom Exam- Module 2, 6 UPDATED Actual Questions and CORRECT Answers
4 views 0 purchase
Course
Axiom
Institution
Axiom
Axiom Exam- Module 2, 6 UPDATED
Actual Questions and CORRECT Answers
Data that is coming from server-stored locations as opposed to data stored on a local device;
fastest growing source of data in forensic examinations - CORRECT ANSWER- Cloud
data
Does not need two-factor authentication; wh...
Axiom Exam- Module 2, 6 UPDATED
Actual Questions and CORRECT Answers
Data that is coming from server-stored locations as opposed to data stored on a local device;
fastest growing source of data in forensic examinations - CORRECT ANSWER✔✔- Cloud
data
Does not need two-factor authentication; when TFA is enabled, this will be helpful to bypass
security measures - CORRECT ANSWER✔✔- Token
Where are tokens stored on an android phone? - CORRECT ANSWER✔✔- accounts.db
Where are tokens stored on an iOS device? - CORRECT ANSWER✔✔- keychain
Yes (to question one) - CORRECT ANSWER✔✔- Can you pick which parts of the cloud
extraction you want to draw out? (e.g. certain date) or do you have to extract all evidence at
once?
Token, Username and password - CORRECT ANSWER✔✔- Two methods that can be used
to access a user's account for cloud extraction
Token - CORRECT ANSWER✔✔- A key that can be used to re-authenticate to a service
without the user constantly needing to enter their credentials within the same session
True - CORRECT ANSWER✔✔- Axiom will automatically select and search for all
computer and mobile artifacts across the cloud evidence when processing cloud evidence
(T/F)
True - CORRECT ANSWER✔✔- Facebook messenger messages will be extracted when
doing a cloud extraction of FB account (T/F)
North, South - CORRECT ANSWER✔✔- Two bridges on a PC motherboard
, RAM, CPU, Video - CORRECT ANSWER✔✔- What does North bridge on a PC
motherboard include?
HD, USB, NIC - CORRECT ANSWER✔✔- What does South bridge on a PC motherboard
include?
Volatile - CORRECT ANSWER✔✔- What kind of storage is RAM
RAM, HD - CORRECT ANSWER✔✔- The CPU on a PC can access X directly but
CANNOT get data directly on the Y.
Command Line - CORRECT ANSWER✔✔- NIST guidelines: a minimally invasive
extraction on RAM capture should be done here
.raw - CORRECT ANSWER✔✔- Image format for RAM on Magnet RAM Capture
Remain - CORRECT ANSWER✔✔- Do the contents of the RAM remain if the PC is
shutdown but remains plugged in
False - CORRECT ANSWER✔✔- RAM data is copied to the HD (T/F)
Memory - CORRECT ANSWER✔✔- Evidence source for a RAM extraction on Axiom
Process
Yesm each profile has different information - CORRECT ANSWER✔✔- Is RAM an image
file? why?
PSLIST - CORRECT ANSWER✔✔- Memory artifact you can review in Axiom to
determine processes that were running in memory at the time of seizure of device
Volume Shadow Copy - CORRECT ANSWER✔✔- Allows Windows to backup entire
volumes. Previous versions are created a minimum of once per day. A windows service. It is
possible to scan ONLY this from a drive.
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying these notes from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller MGRADES. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy these notes for $8.99. You're not tied to anything after your purchase.
