CFR-410試験無料問題集（182題）「CertNexus CyberSec First Responder 認定」

出題：1

Which of the following can be used as a vulnerability management and assessment tool?

A. Nessus

B. John the Ripper

C. THC Hydra

D. Cain & Abel

正解：A 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：2

A user receives an email about an unfamiliar bank transaction, which includes a link. When clicked, the link redirects the user to a web page that looks exactly like their bank's website and asks them to log in with their username and password. Which type of attack is this?

A. Smishing

B. Vishing

C. Whaling

D. Phishing

正解：D 解答を投票する

出題：3

Traditional SIEM systems provide:

A. Static Malware Analysis, Dynamic Malware Analysis, and Hybrid Malware Analysis.

B. Privileged Identity Management. Privileged Access Management, and Identity and Access Management.

C. Aggregation, Normalization, Correlation, and Alerting.

D. Unknown Attacks Analysis User Behavior Analysis and Network Anomalies

正解：C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：4

Which of the following plans helps IT security staff detect, respond to, and recover from a cyber attack?

A. Incident Response Plan

B. Business Impact Plan

C. Disaster Recovery Plan

D. Data Recovery Plan

正解：A 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：5

Nmap is a tool most commonly used to:

A. Determine who is logged onto a host

B. Scan web applications

C. Perform network and port scanning

D. Map a route for war-driving

正解：C 解答を投票する

出題：6

According to company policy, all accounts with administrator privileges should have suffix _ja. While reviewing Windows workstation configurations, a security administrator discovers an account without the suffix in the administrator's group. Which of the following actions should the security administrator take?

A. Review the system log on the affected workstation.

B. Review the system log on a domain controller.

C. Review the security log on a domain controller.

D. Review the security log on the affected workstation.

正解：C 解答を投票する

出題：7

Where are log entries written for auditd in Linux?

A. /var/log/audit.log

B. /var/log/audit/messages

C. /etc/audit/audit.conf

D. /var/log/audit/audit.log

E. /etc/audit/audit.rules

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：8

During the forensic analysis of a compromised computer image, the investigator found that critical files are missing, caches have been cleared, and the history and event log files are empty. According to this scenario, which of the following techniques is the suspect using?

A. Defragmentation techniques

B. Anti-forensic techniques

C. System hardening techniques

D. System optimization techniques

正解：B 解答を投票する

出題：9

During recovery from an incident, which three options should a company focus on? (Choose three.)

A. Determining the financial impact of the breach

B. Providing details of the breach to media

C. Restoring system and network connectivity

D. Identifying the responsible parties

E. Evaluating the success of the current incident response plan

F. Ensuring proper notifications have been made

正解：C,E,F 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：10

Which are successful Disaster Recovery Plan best practices options to be considered? (Choose three.)

A. Understand which processes are critical to the business and have to run in disaster recovery.

B. Maintain integrity between primary and secondary deployments.

C. Back up to a NAS device that is attached 24 hours a day, 7 days a week.

D. Isolate the services and data as much as possible.

E. Store any data elements in the root storage that is used for root access for the workspace.

正解：A,B,D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

CFR-410試験無料問題集「CertNexus CyberSec First Responder 認定」