Weekend Sale 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: Board70

GCED Exam Dumps - GIAC Security Certification: GASF Questions and Answers

Question # 14

An analyst will capture traffic from an air-gapped network that does not use DNS. The analyst is looking for unencrypted Syslog data being transmitted. Which of the following is most efficient for this purpose?

Options:

A.

tcpdump –s0 –i eth0 port 514

B.

tcpdump –nnvvX –i eth0 port 6514

C.

tcpdump –nX –i eth0 port 514

D.

tcpdump –vv –i eth0 port 6514

Buy Now
Question # 15

How does an Nmap connect scan work?

Options:

A.

It sends a SYN, waits for a SYN/ACK, then sends a RST.

B.

It sends a SYN, waits for a ACK, then sends a RST.

C.

It sends a SYN, waits for a ACK, then sends a SYN/ACK.

D.

It sends a SYN, waits for a SYN/ACK, then sends a ACK

Buy Now
Question # 16

From a security perspective, how should the Root Bridge be determined in a Spanning Tree Protocol (STP) environment?

Options:

A.

Manually selected and defined by the network architect or engineer.

B.

Defined by selecting the highest Bridge ID to be the root bridge.

C.

Automatically selected by the Spanning Tree Protocol (STP).

D.

All switch interfaces become root bridges in an STP environment.

Buy Now
Exam Code: GCED
Exam Name: GIAC Certified Enterprise Defender
Last Update: Aug 24, 2025
Questions: 88
GCED pdf

GCED PDF

$25.5  $84.99
 Add to Cart
GCED Engine

GCED Testing Engine

$28.5  $94.99
 Add to Cart
GCED PDF + Engine

GCED PDF + Testing Engine

$40.5  $134.99
 Add to Cart