GCFR Practice Exam Questions with Answers GIAC Cloud Forensics Responder (GCFR) Certification

Below is an extract from a Server Access Log showing arecord for a request made to an AWS S3 bucket. What does the first field starting with "385f9e" represent?

Which cloud model should an organization negotiate access to logs as pert of contract negotiation prior to using the service?

An Azure blob is accessed using the link below. What is the name of the blob container?

Which AWS policy type specifies the maximum resource permissions for in organization or organizational unit (OU)?

What Azure SaaS option executes workflows instead of code?

Which Azure binary large object type is usually used to store virtual hard drive files?

An analyst investigating a malicious application determines that it runs using AVVS Lambda. What challenge will the analyst likely encounter during the Investigation?

Which of the following is available with the free tier of service for CloudTrail?

Access Kibana via http://10.0.1.7:5601 and use the *ws-* index pattern. Use the time range 2021-03-0100:00 UTC to 2021 04 U 00:00 UTC. How many ec2 DescribMnstantp*; events were performed by the root user?

The attack technique "Access Kubelet API" falls under which Mitre ATT&CK tactic?

Which EBS volumetype would be appropriate to support a business critical SQL server hosted In AWS?

What is shown in the screenshot?

Which is a limitation when adding GPUs to Google cloud VMs?

Which AW5 1AM policy element indicates the API that is in scope?

What unique identifier is used by AWS to identify a specific account and allow integration with external organizations?

What method does Google use to alert Gmail account holders that they may be under attack by government sponsored attackers?

An engineer is troubleshooting a complaint that a web server in AWS cannot receive incoming traffic, but the server can connect to the internet otherwise. What is needed to solve this problem?