C2150-199無料問題集「IBM Security AppScan Standard Edition Implementation v8.7」

質問 1

Which log file would be useful in verifying whether or not a particular security test was executed during a test?

（A）Security log

（B）AppScan log

（C）Update log

（D）Scan log

正解：C 解答を投票する

質問 2

You just updated the error page for the application. When will that update affect the scan results?

（A）After you click "Apply to Current Results"

（B）Immediately

（C）After the next time you open the scan

（D）After the next scan of the same application

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 3

Which two types of reports allow a user to import a custom .asreg file to specify a user-defined template?

（A）Template based report

（B）Regulatory compliance report

（C）Security report

（D）Delta analysis report

（E）Industry standard report

正解：B、E 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 4

What is the purpose of the Automatic Form Fill in the scan configuration?

（A）Identify session IDs and list parameters to exclude from the scan

（B）Provide information about the application environment

（C）Provide IBM Security AppScan Standard Edition with valid application input

（D）Exclude paths and file types from the scan

正解：C 解答を投票する

質問 5

Which authentication method is supported when IBM Security Authentication Tester PowerTool uses the "brute-force" technique to reveal weak username-password combinations that could be used to gain access to a web application?

（A）Two-Factor

（B）NTLM

（C）HTTP

（D）SecurlD

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 6

How do you remove sensitive information from the scan logs?

（A）Disable scan logs

（B）Enable Sanitize logs in advanced configuration

（C）Use the Customize Scan Log to disable sensitive information

（D）Disable request/response logging

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

C2150-199 無料問題集「IBM Security AppScan Standard Edition Implementation v8.7」

弊社を連絡する

関連リンク

トップ試験