What is the GCIH (GIAC Certified Incident Handler) certification?

The GCIH (GIAC Certified Incident Handler) is a cybersecurity certification offered by GIAC. It validates your knowledge and skills in the field. A passing score of 73% is required.

How many practice questions does CyberCertPrep have for GCIH?

CyberCertPrep offers thousands of exam-style practice questions for the GCIH certification, covering all exam domains and topics. Questions are regularly updated to match the latest exam objectives.

What is the GCIH exam format?

The GCIH exam consists of 106 questions to be completed in 300 minutes. The passing score is 73%.

Is CyberCertPrep free for GCIH practice?

CyberCertPrep offers a free tier with limited daily questions. Premium plans unlock unlimited access to all practice questions, exam simulations, analytics, and flashcards.

GIAC

Evasion and Defense

GIAC Certified Incident Handler (GCIH) Exam Domain

12% of exam#8 by weight in GCIH73% passing score

Exam Weight Breakdown

Incident Handling Process

13%

Reconnaissance and Scanning

13%

Exploitation Techniques

13%

Password Attacks

13%

Network-Based Attacks

12%

Malware and Persistence

12%

Web Application Attacks

12%

Evasion and Defense

12%

Practice Evasion and Defense Questions

Focus your study on this domain with targeted practice questions. This domain accounts for 12% of your GCIH exam score.

Practice Now Flashcards

Study Guide: Evasion and Defense

The Evasion and Defense domain is one of 8 exam domains on the GIAC Certified Incident Handler (GCIH) certification exam by GIAC. At 12% of the total exam, this domain is important but should be balanced with higher-weighted domains in your study plan.

The GCIH exam consists of 106 questions with a time limit of 5 hours and a passing score of 73%. That means approximately 13 questions on your exam will come from the Evasion and Defense domain.

Study Strategy

Start with practice questions filtered to this topic to identify weak areas
Use flashcards for key terms and concepts within Evasion and Defense
Review the glossary terms below for foundational vocabulary
Take a full exam simulation periodically to practice time management across all domains
Don't neglect other domains — Incident Handling Process (13%) and Reconnaissance and Scanning (13%) are also heavily tested

Key Terms for Evasion and Defense

Firewall

A network security system that monitors and controls incoming and outgoing network traffic based on predetermined securi...

IPS (Intrusion Prevention System)

A network security tool that monitors network traffic flows to detect and actively prevent identified threats in real ti...

DMZ (Demilitarized Zone)

A physical or logical subnet that separates an internal network from untrusted external networks, providing an additiona...

Packet Sniffing

The practice of capturing and analyzing network traffic data packets as they travel across a network using tools like Wi...

Malware

Malicious software designed to damage, disrupt, or gain unauthorized access to computer systems, encompassing a broad ca...

Phishing

A social engineering attack that uses fraudulent emails, text messages (smishing), or phone calls (vishing) to trick use...

Man-in-the-Middle (MITM)

An attack where the attacker secretly intercepts and potentially alters communications between two parties who believe t...

Zero-Day Exploit

An attack that targets a previously unknown vulnerability in software, hardware, or firmware before the vendor has relea...

View full cybersecurity glossary (87 terms) →

All GCIH Exam Domains

Incident Handling Process13%Reconnaissance and Scanning13%Exploitation Techniques13%Password Attacks13%Network-Based Attacks12%Malware and Persistence12%Web Application Attacks12%Evasion and Defense12%

Certifications with Similar Topics

These certifications also cover topics related to Evasion and Defense:

GSECby GIAC

Defense in Depth — 13% of exam

GCEDby GIAC

Network Defense — 7% of exam

GXPNby GIAC

Advanced Evasion Techniques — 12% of exam

OSEPby OffSec

AV Evasion — 7% of exam

CRTOby Zero-Point Security

Persistence and Defense Evasion — 12% of exam

CRTPby Altered Security

Defense Evasion — 12% of exam

All GCIH Topics Practice Evasion and Defense

Study Guide: Evasion and Defense

The GCIH exam consists of 106 questions with a time limit of 5 hours and a passing score of 73%. That means approximately 13 questions on your exam will come from the Evasion and Defense domain.

Study Strategy

Start with practice questions filtered to this topic to identify weak areas
Use flashcards for key terms and concepts within Evasion and Defense
Review the glossary terms below for foundational vocabulary
Take a full exam simulation periodically to practice time management across all domains
Don't neglect other domains — Incident Handling Process (13%) and Reconnaissance and Scanning (13%) are also heavily tested

106 Practice Exam Questions — GIAC Certified Incident Handler

Evasion and Defense

Exam Weight Breakdown

Practice Evasion and Defense Questions

Study Guide: Evasion and Defense

Study Strategy

Key Terms for Evasion and Defense

All GCIH Exam Domains

Certifications with Similar Topics

106 Practice Exam Questions — GIAC Certified Incident Handler

Evasion and Defense

Exam Weight Breakdown

Practice Evasion and Defense Questions

Study Guide: Evasion and Defense

Study Strategy

Key Terms for Evasion and Defense

All GCIH Exam Domains

Certifications with Similar Topics