CFR-310試験無料問題集（100題）「CertNexus CyberSec First Responder (CFR) 認定」

出題：1

Which of the following attacks involves sending a large amount of spoofed User Datagram Protocol (UDP) traffic to a router's broadcast address within a network?

A. Teardrop attack

B. Fraggle attack

C. Land attack

D. Smurf attack

正解：D 解答を投票する

出題：2

Which of the following is an automated password cracking technique that uses a combination of uppercase and lowercase letters, 0-9 numbers, and special characters?

A. Brute force attack

B. Rainbow tables

C. Password guessing

D. Dictionary attack

正解：A 解答を投票する

出題：3

Senior management has stated that antivirus software must be installed on all employee workstations. Which of the following does this statement BEST describe?

A. Procedure

B. Guideline

C. Standard

D. Policy

正解：D 解答を投票する

出題：4

An organization recently suffered a data breach involving a server that had Transmission Control Protocol (TCP) port 1433 inadvertently exposed to the Internet. Which of the following services was vulnerable?

A. Network Basic Input/Output System (NetBIOS)

B. Network Time Protocol (NTP)

C. Database

D. Internet Message Access Protocol (IMAP)

正解：C 解答を投票する

出題：5

During which of the following attack phases might a request sent to port 1433 over a whole company network be seen within a log?

A. Reconnaissance

B. Gaining access

C. Scanning

D. Persistence

正解：C 解答を投票する

出題：6

Network infrastructure has been scanned and the identified issues have been remediated. What is the next step in the vulnerability assessment process?

A. Conducting an audit

B. Establishing scope

C. Generating reports

D. Assessing exposures

正解：A 解答を投票する

出題：7

A web server is under a denial of service (DoS) attack. The administrator reviews logs and creates an access control list (ACL) to stop the attack. Which of the following technologies could perform these steps automatically in the future?

A. Whitelisting

B. Intrusion detection system (IDS)

C. Blacklisting

D. Intrusion prevention system (IPS)

正解：B 解答を投票する

出題：8

Which common source of vulnerability should be addressed to BEST mitigate against URL redirection attacks?

A. Network infrastructure

B. Configuration files

C. Users

D. Application

正解：D 解答を投票する

出題：9

While performing routing maintenance on a Windows Server, a technician notices several unapproved Windows Updates and that remote access software has been installed. The technician suspects that a malicious actor has gained access to the system. Which of the following steps in the attack process does this activity indicate?

A. Scanning

B. Expanding access

C. Covering tracks

D. Persistence

正解：B 解答を投票する

出題：10

To minimize vulnerability, which steps should an organization take before deploying a new Internet of Things (IoT) device? (Choose two.)

A. Setting up new users

B. Disabling IPv6

C. Changing the default password

D. Updating the device firmware

E. Enabling the firewall

正解：D,E 解答を投票する

CFR-310試験無料問題集「CertNexus CyberSec First Responder (CFR) 認定」