C2150-810無料問題集「IBM Security AppScan Source Edition Implementation」

質問 1

You are reviewing an application and discover a method called doSomethingQ that retrieves and returns data from another system.
Which type of custom rule do you need to create for AppScan Source to properly capture this data?

（A）Taint Propagator

（B）Not Susceptible to Taint

（C）Sink

（D）Tainted Callback

（E）Source

正解：D 解答を投票する

質問 2

When scanning .NET assemblies, what is the likely cause of missing line of code information from the findings?

（A）A valid Visual Studio solution file (.sin) is not present on the file system and in the same directory as the .NET assembly files.

（B）The version of Visual Studio used to develop the application and corresponding projects is not installed in the scanning environment.

（C）msdia80.dll is not present and registered on the file system.

（D）pdb files are not generated and present with complete debug info for each target executable or DLL configured in the scan.

正解：B 解答を投票する

質問 3

Which features are provided by the AppScan Source for Analysis?

（A）It is used to run scans, triage findings and generate filters and reports.

（B）It is used for report generation and unattended scans.

（C）It is used to run scans and upload them to QRadar.

（D）It is used by security teams to run scans and build integration.

正解：A 解答を投票する

質問 4

AppScan Source discovers a finding that contains data flow that ends at a Lost Sink.
How will this finding be classified?

（A）Suspect

（B）Scan Coverage

（C）Definitive

（D）Info

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 5

Which license is required for any AppScan Source deployment?

（A）IBM Security AppScan Source for Automation license

（B）IBM Security AppScan Enterprise Server license

（C）IBM Security AppScan Source for Developer license

（D）IBM Security AppScan Source Core Server license

正解：B 解答を投票する

C2150-810 無料問題集「IBM Security AppScan Source Edition Implementation」

弊社を連絡する

関連リンク

トップ試験