To avoid contaminating the suspect’s hard drive when starting up the computer, which hardware setting should be consulted?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards

From $9.99Unlock all

Enhance your knowledge as a Computer Hacking Forensic Investigator with the CHFI v11 Test. Use flashcards and multiple-choice questions, complete with hints and detailed explanations, to prepare effectively and ace your exam!

Multiple Choice

To avoid contaminating the suspect’s hard drive when starting up the computer, which hardware setting should be consulted?

Controlling the boot path at the firmware level is essential to prevent writes to the suspect’s drive. The CMOS stores BIOS/firmware settings, including the boot order and how devices are detected. By checking and adjusting these settings in CMOS, you can ensure the system boots from a trusted forensic medium (like a write-blocked USB/DVD) rather than the internal hard drive, minimizing the risk of contaminating or altering evidence. The other options are software components: Boot.ini is a Windows boot configuration file, Boot.sys is a Windows system file, and Scandisk is a disk-check utility, none of which govern hardware boot behavior.

To avoid contaminating the suspect’s hard drive when starting up the computer, which hardware setting should be consulted?

Enhance your knowledge as a Computer Hacking Forensic Investigator with the CHFI v11 Test. Use flashcards and multiple-choice questions, complete with hints and detailed explanations, to prepare effectively and ace your exam!

To avoid contaminating the suspect’s hard drive when starting up the computer, which hardware setting should be consulted?

Get the latest from Examzify