200-201無料問題集「Cisco Understanding Cisco Cybersecurity Operations Fundamentals」

質問 1

What is the difference between vulnerability and risk?

（A）A vulnerability is a weakness that can be exploited and the risk is the potential for loss or damage

（B）Risk is the assessment of possible weaknesses and vulnerability is a reconfiguration of an asset

（C）A vulnerability is an attack surface, and the risk is the vector of the attack

（D）A risk is a possible danger that an exploit applies to and a vulnerability represents the threat actor

正解：B 解答を投票する

質問 2

What are two denial of service attacks? (Choose two.)

（A）code red

（B）MITM

（C）ping of death

（D）UDP flooding

（E）TCP connections

正解：C、D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 3

An analyst performs traffic analysis to detect data exfiltration and identifies a high frequency of DNS requests in a small period of time Which technology makes this behavior feasible?

（A）NAT

（B）encryption

（C）tunneling

（D）access control list

正解：C 解答を投票する

質問 4

Refer to the exhibit Drag and drop the element names from the left onto the corresponding pieces of the PCAP file on the right.

正解：

Explanation:

A screenshot of a computer Description automatically generated

質問 5

Which two components reduce the attack surface on an endpoint? (Choose two.)

（A）full packet captures at the endpoint

（B）load balancing

（C）secure boot

（D）restricting USB ports

（E）increased audit log levels

正解：C、D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 6

Which regular expression is needed to capture the IP address 192.168.20.232?

（A）^(?:[0-9]{1,3}\.){3}[0-9]{1,3}

（B）^(?:[0-9]{1,3}\.)'

（C）^([0-9]-{3})

（D）^(?:[0-9]f1,3}\.){1,4}

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 7

Which metric is used to capture the level of access needed to launch a successful attack?

（A）attack complexity

（B）user interaction

（C）privileges required

（D）attack vector

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 8

In a SOC environment, what is a vulnerability management metric?

（A）code signing enforcement

（B）full assets scan

（C）internet exposed devices

（D）single factor authentication

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 9

An engineer must configure network systems to detect command-and-control communications by decrypting ingress and egress perimeter traffic and allowing network security devices to detect malicious outbound communications. Which technology must be used to accomplish this task?

（A）signatures

（B）cipher suite

（C）static IP addresses

（D）digital certificates

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 10

Refer to the exhibit.

Which kind of attack method is depicted in this string?

（A）man-in-the-middle

（B）SQL injection

（C）cross-site scripting

（D）denial of service

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 11

Drag and drop the uses on the left onto the type of security system on the right.

正解：

質問 12

Refer to the exhibit.

What does the message indicate?

（A）a successful access attempt was made to retrieve the password file

（B）a successful access attempt was made to retrieve the root of the website

（C）an access attempt was made from the Mosaic web browser

（D）a denied access attempt was made to retrieve the password file

正解：B 解答を投票する

質問 13

Refer to the exhibit. An employee received an email from an unknown sender with an attachment and reported it as a phishing attempt. An engineer uploaded the file to Cuckoo for further analysis. What should an engineer interpret from the provided Cuckoo report?

（A）Win32.polip.a.exe is an executable file and should be flagged as malicious.

（B）Cuckoo cleaned the malicious file and prepared it for usage.

（C）MD5 of the file was not identified as malicious.

（D）The file is clean and does not represent a risk.

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 14

Which type of data must an engineer capture to analyze payload and header information?

（A）alert data

（B）full packet

（C）frame check sequence

（D）session logs

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 15

During which phase of the forensic process are tools and techniques used to extract information from the collected data?

（A）investigation

（B）reporting

（C）collection

（D）examination

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 16

Which type of evidence supports a theory or an assumption that results from initial evidence?

（A）probabilistic

（B）indirect

（C）best

（D）corroborative

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 17

Which type of data consists of connection level, application-specific records generated from network traffic?

（A）statistical data

（B）alert data

（C）transaction data

（D）location data

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 18

What is a difference between tampered and untampered disk images?

（A）Untampered images are deliberately altered to preserve as evidence

（B）Tampered images are used as evidence.

（C）Tampered images have the same stored and computed hash.

（D）Untampered images are used for forensic investigations.

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 19

Which system monitors local system operation and local network access for violations of a security policy?

（A）host-based firewall

（B）systems-based sandboxing

（C）antivirus

（D）host-based intrusion detection

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 20

Refer to the exhibit A penetration tester runs the Nmap scan against the company server to uncover possible vulnerabilities and exploit them Which two elements can the penetration tester identity from the scan results?
(Choose two.)

（A）UIDs and group identifiers

（B）running services and applications

（C）server uptime and internal clock

（D）number of concurrent connections the server can handle

（E）server purpose and functionality

正解：B、E 解答を投票する

200-201 無料問題集「Cisco Understanding Cisco Cybersecurity Operations Fundamentals」

弊社を連絡する

関連リンク

トップ試験