200-201試験無料問題集「Cisco Understanding Cisco Cybersecurity Operations Fundamentals 認定」

A. managing and keeping previous patches lists documented for audit purposes

B. process of appropriate distribution of system or software updates

C. workflow of distributing mitigations of newly found vulnerabilities

D. scanning servers and workstations for missing patches and vulnerabilities

A. Focusing on proactively detecting possible signs of intrusion and compromise.

B. Managing a vulnerability assessment report to mitigate potential threats.

C. Pursuing competitors and adversaries to infiltrate their system to acquire intelligence data.

D. Attempting to deliberately disrupt servers by altering their availability

A. malicious web scripts

B. viruses

C. zero-day vulnerabilities

D. unwanted traffic

A. An attack surface mitigates external vulnerabilities, and an attack vector identifies mitigation techniques and possible workarounds.

B. An attack vector recognizes the potential outcomes of an attack, and the attack surface is choosing a method of an attack.

C. An attack surface identifies vulnerable parts for an attack, and an attack vector specifies which attacks are feasible to those parts.

D. An attack vector matches components that can be exploited, and an attack surface classifies the potential path for exploitation

A. It collects metadata for the engineer to analyze, including IP traffic packet data that is sorted, parsed, and indexed.

B. It reconstructs the event allowing the engineer to identify the root cause by seeing what took place during the breach

C. It provides the full TCP streams for the engineer to follow the metadata to identify the incoming threat.

D. It captures the TCP flags set within each packet for the engineer to focus on suspicious packets to identify malicious activity

A. Several distinct protective layers are involved.

B. Access control models are involved.

C. Agentless and agent-based protection for security are used.

D. Authentication, authorization, and accounting mechanisms are used.

A. Password Revelation Strategy

B. Piggybacking

C. Phishing attack

D. Social Engineering

A. Initiator IP

B. Source Port

C. Initiator User

D. First Packet

E. Ingress Security Zone

A. impersonating a tech support agent during a phone call

B. setting up a rogue access point near a public hotspot

C. using a vulnerability scanner on a corporate network

D. obtaining disposed documents from an organization

A. A host on the network is sending a DDoS attack to another inside host.

B. A policy violation is active for host 10.201.3.149.

C. A policy violation is active for host 10.10.101.24.

D. There are two active data exfiltration alerts.

A. data protection

B. data signature

C. data availability

D. data normalization

A. receiver

B. HR

C. sender

D. phishing email

A. antivirus

B. host-based intrusion detection

C. host-based firewall

D. systems-based sandboxing

A. denial of service

B. command injection

C. port scanning

D. man-in-the-middle

A. Stealthwatch

B. Firepower

C. Email Security Appliance

D. Web Security Appliance

A. Block connection to this C&C server on the perimeter next-generation firewall

B. Detect the attack vector and analyze C&C connections

C. Provide security awareness training to HR managers and employees

D. Update antivirus signature databases on affected endpoints to block connections to C&C

E. Isolate affected endpoints and take disk images for analysis

A. The traffic would have been monitored at any segment in the network.

B. Detailed information about the data in real time would have been provided

C. Malicious traffic would have been blocked on multiple devices

D. An extra level of security would have been in place

A. Scan open services and ports on a server.

B. Develop a specific malware to exploit a vulnerable server, i

C. Match a known script to a vulnerability.

D. Construct a trojan and deliver l! to the victim.