GIAC GDAT Actual Free Exam Questions & Community Discussion

Exam Code/Number: GDAT
Exam Name/Title: GIAC Defending Advanced Threats
Certification Provider: GIAC
Corresponding Certification: GIAC Certification

Exam Questions: 152
Updated On: Jun 02, 2026

Question #71

Which techniques are vital for detecting advanced persistent threats (APTs) during threat hunting?
Response:

A. Frequent software audits

B. Single sign-on implementation

C. Regular password changes

D. Continuous endpoint monitoring

Discussion 0

Correct Answer: D Vote an answer

Question #72

How does implementing least privilege help mitigate security risks?
Response:

A. It limits the impact of a compromised account.

B. It reduces the need for regular security audits.

C. It increases the transparency of user actions.

D. It facilitates faster user onboarding.

Discussion 0

Correct Answer: A,C Vote an answer

Question #73

Which of the following are techniques used by malware to maintain persistence on a system?
(Choose two)
Response:

A. Writing malicious scripts to the startup folder

B. Encrypting all user data

C. Disabling automatic system updates

D. Installing a new service on the system

Discussion 0

Correct Answer: A,D Vote an answer

Question #74

Which tool is commonly used by attackers for lateral movement within a network?
Response:

A. PowerShell

B. Nmap

C. Snort

D. OpenSSL

Discussion 0

Correct Answer: A Vote an answer

Question #75

Which of the following are benefits of effective patch management strategies?
Response:

A. Minimizing downtime due to software failures

B. Reducing the risk of security breaches

C. Enhancing the functionality of software

D. Preventing data loss

Discussion 0

Correct Answer: A,B,D Vote an answer

Question #76

Which exploit mitigation techniques are used to prevent application exploitation?
(Choose two)
Response:

A. Web Application Firewalls (WAF)

B. Role-based access control

C. Fuzz testing

D. File hashing for integrity verification

Discussion 0

Correct Answer: A,C Vote an answer

Question #77

What is the primary benefit of using encryption during data exfiltration?
Response:

A. It allows attackers to bypass firewalls

B. It prevents detection by masking the content of the exfiltrated data

C. It ensures compliance with GDPR regulations

D. It enhances system performance

Discussion 0

Correct Answer: B Vote an answer

Question #78

Which of the following are common indicators of data exfiltration in an enterprise network?
(Choose two)
Response:

A. Increased use of encrypted email services

B. High volumes of outbound traffic to unknown IPs

C. Frequent system crashes and restarts

D. Anomalies in account logins across geographic locations

Discussion 0

Correct Answer: B,D Vote an answer

Question #79

Which security control is most effective in preventing lateral movement through the use of stolen credentials?
Response:

A. Web application firewalls

B. Antivirus software

C. Data loss prevention systems

D. Multi-factor authentication (MFA)

Discussion 0

Correct Answer: D Vote an answer

Question #80

What is a recommended approach for removing malware persistence mechanisms?
Response:

A. Reinstalling the operating system

B. Isolating the infected systems from the network

C. Updating all third-party applications

D. Performing a system format on all workstations

Discussion 0

Correct Answer: B Vote an answer

Question #81

Which of the following are typical activities conducted during cybersecurity reconnaissance?
(Choose Two)
Response:

A. Scanning for open ports and services

B. Encrypting sensitive data

C. Documenting system vulnerabilities

D. Implementing a data retention policy

Discussion 0

Correct Answer: A,C Vote an answer

Question #82

How do attackers use the autostart functionality to maintain persistence?
Response:

A. By adding malicious executables to system startup

B. By disabling firewall settings

C. By periodically clearing event logs

D. By encrypting network communications

Discussion 0

Correct Answer: A Vote an answer

Question #83

In what scenario might an attacker use social engineering as part of their exfiltration strategy?
Response:

A. To physically access restricted areas

B. To gain initial access through phishing

C. To understand the organization's data classification policy

D. To learn schedules that reduce detection risk

Discussion 0

Correct Answer: B Vote an answer

Question #84

Which of the following is a key objective of threat hunting in cybersecurity?
Response:

A. To proactively search for threats that may bypass traditional detection systems

B. To monitor system performance and optimize resource allocation

C. To block all inbound network traffic during an attack

D. To passively observe network traffic without taking action

Discussion 0

Correct Answer: A Vote an answer

Download Free GIAC GDAT Demo

Simply submit your e-mail address below to get started with our free demo of your GIAC GDAT exam.