200-201試験無料問題集「Cisco Understanding Cisco Cybersecurity Operations Fundamentals 認定」

What is a difference between an inline and a tap mode traffic monitoring?

解説: (GoShiken メンバーにのみ表示されます)
Which event is a vishing attack?

解説: (GoShiken メンバーにのみ表示されます)
How does an SSL certificate impact security between the client and the server?

解説: (GoShiken メンバーにのみ表示されます)
Which regex matches only on all lowercase letters?

解説: (GoShiken メンバーにのみ表示されます)
What is the benefit of processing statistical data for security systems?

Refer to the exhibit.

Which application-level protocol is being targeted?

Drag and drop the technology on the left onto the data type the technology provides on the right.
正解:

Which technology should be used to implement a solution that makes routing decisions based on HTTP header, uniform resource identifier, and SSL session ID attributes?

解説: (GoShiken メンバーにのみ表示されます)
Which action matches the weaponization step of the Cyber Kill Chain model?

解説: (GoShiken メンバーにのみ表示されます)
Refer to the exhibit.

Which packet contains a file that is extractable within Wireshark?

解説: (GoShiken メンバーにのみ表示されます)
What is the function of a command and control server?

解説: (GoShiken メンバーにのみ表示されます)
A network engineer noticed in the NetFlow report that internal hosts are sending many DNS requests to external DNS servers A SOC analyst checked the endpoints and discovered that they are infected and became part of the botnet Endpoints are sending multiple DNS requests but with spoofed IP addresses of valid external sources What kind of attack are infected endpoints involved in1?

解説: (GoShiken メンバーにのみ表示されます)
Endpoint logs indicate that a machine has obtained an unusual gateway address and unusual DNS servers via DHCP Which type of attack is occurring?

解説: (GoShiken メンバーにのみ表示されます)
An analyst is investigating an incident in a SOC environment. Which method is used to identify a session from a group of logs?

What is the impact of encapsulation on the network?


Refer to the exhibit. Which set of actions must an engineer perform to identify and fix this issue?