
実践サンプルと問題集と指導には2025年最新の100-160有効なテスト問題集
最新 [2025年04月18日] 100%合格率保証付きの素晴らしい100-160試験問題PDF
質問 # 13
Which of the following is an example of a private IP address?
- A. 169.254.0.1
- B. 172.16.0.0
- C. 198.51.100.0
- D. 203.0.113.0
正解:B
解説:
Among the given options, 172.16.0.0 is an example of a private IP address. It falls within the range of private IP addresses defined by RFC 1918, specifically the Class B private address range 172.16.0.0 - 172.31.255.255, which is commonly used for internal networks.
質問 # 14
Which of the following is an example of a detective control?
- A. Access control list (ACL)
- B. Encryption
- C. Patch management
- D. Security information and event management (SIEM) system
正解:D
解説:
A SIEM system is a detective control that collects and analyzes security event logs from various sources to identify and detect potential security incidents. It provides real-time monitoring and alerts for suspicious activities, enabling organizations to identify and respond to security events effectively.
質問 # 15
What is the purpose of vulnerability management in cybersecurity?
- A. To transfer ownership of cybersecurity risks to third-party vendors.
- B. To assess the level of cybersecurity risk associated with a system or network.
- C. To mitigate the impact of cybersecurity incidents within an organization.
- D. To identify and address vulnerabilities in a timely manner.
正解:D
解説:
The purpose of vulnerability management in cybersecurity is to identify, assess, and address vulnerabilities in a timely manner. It involves a systematic approach to scanning, testing, and monitoring for vulnerabilities in systems, networks, and applications. By proactively managing vulnerabilities, organizations can reduce the likelihood of successful cyber-attacks and minimize potential damages. Vulnerability management typically includes processes such as vulnerability scanning, vulnerability patching, and vulnerability remediation.
質問 # 16
Which of the following is a characteristic of a denial-of-service (DoS) attack?
- A. An attacker intercepts and modifies network traffic.
- B. An attacker attempts to gain unauthorized access to a system.
- C. An attacker floods a system with excessive requests, rendering it unable to function properly.
- D. An attacker steals or alters sensitive data.
正解:C
解説:
A denial-of-service (DoS) attack is a type of cyber attack where an attacker floods a system with an excessive amount of requests, overwhelming its resources and causing it to crash or become unresponsive.
質問 # 17
Which of the following helps to ensure the confidentiality of data in computer operations?
- A. Data integrity controls
- B. Access control lists (ACLs)
- C. Intrusion Detection System (IDS)
- D. Antivirus software
正解:B
解説:
Access control lists (ACLs) are a security mechanism used in computer operations to enforce and manage access permissions for users and resources. ACLs enable organizations to control who can access specific data or resources, helping to ensure the confidentiality of sensitive information.
質問 # 18
Which command-line tool is used to query DNS records and obtain information about domain names?
- A. nslookup
- B. traceroute
- C. netstat
- D. tcpdump
正解:A
解説:
The correct command-line tool for querying DNS records and obtaining information about domain names is nslookup. It can be used to check the security assessment information related to DNS configurations, verify the correct mapping of domain names to IP addresses, and troubleshoot any DNS-related issues.
質問 # 19
What is the main difference between a public and a private network?
- A. Private networks are accessible to the general public, while public networks are not
- B. Private networks are more expensive to set up than public networks
- C. Public networks are secured, while private networks are not
- D. Public networks use public IP addresses, while private networks use private IP addresses
正解:D
解説:
The main difference between a public network and a private network lies in the IP addressing scheme. Public networks use public IP addresses, provided by ISPs, to route traffic over the internet. Private networks, on the other hand, use private IP addresses, typically reserved IP ranges (e.g., 192.168.x.x or 10.x.x.x), for local communication within a network.
質問 # 20
What is the primary purpose of malware remediation?
- A. To remove or neutralize malware infections
- B. To detect malware threats
- C. To create a backup of infected systems
- D. To prevent malware infections
正解:A
解説:
Malware remediation aims to remove or neutralize malware infections from compromised systems. It involves various techniques, such as scanning and cleaning the infected files, removing malicious software, and repairing damages caused by the malware. The goal is to restore the system's integrity, security, and functionality by eliminating the presence and impact of malware.
質問 # 21
Which of the following best describes risks in the context of cybersecurity?
- A. Potential losses or negative impacts associated with cybersecurity threats and vulnerabilities
- B. The process of identifying and assessing potential threats to an organization's security
- C. The extent to which vulnerabilities can be exploited
- D. The likelihood of a cybersecurity incident occurring
正解:A
解説:
Risks in the context of cybersecurity refer to potential losses or negative impacts that can be caused by cybersecurity threats and vulnerabilities. These risks encompass various aspects such as financial losses, reputational damage, operational disruptions, or compromise of sensitive data. Understanding and managing risks is crucial in developing effective cybersecurity strategies to protect an organization's assets and ensure business continuity.
質問 # 22
Which of the following features help to secure a wireless SoHo network from unauthorized access?
- A. Weak encryption
- B. Default admin credentials
- C. SSID broadcast
- D. MAC filtering
正解:D
解説:
MAC filtering is a feature that allows a network administrator to specify which devices can connect to the wireless network based on their MAC (Media Access Control) addresses. By enabling MAC filtering, only devices with authorized MAC addresses will be allowed to connect, thereby enhancing network security. SSID (Service Set Identifier) broadcast refers to the network name being broadcasted, and hiding it doesn't provide significant security improvement. Default admin credentials should always be changed to prevent unauthorized access, making option C a weak answer choice. Weak encryption, such as WEP or TKIP, provides little security and should be avoided.
質問 # 23
How do Common Vulnerabilities and Exposures (CVEs) benefit cybersecurity professionals?
- A. They directly prevent cyberattacks.
- B. They provide a standardized approach for vulnerability management.
- C. They ensure compliance with cybersecurity regulations.
- D. They identify all possible vulnerabilities in an IT infrastructure.
正解:B
解説:
Common Vulnerabilities and Exposures (CVEs) provide a standardized approach for vulnerability management across different software systems, hardware devices, or networks. Security professionals can use CVEs to track and manage vulnerabilities more effectively, making it easier to identify and prioritize patching needs. CVEs help in maintaining a consistent and systematic process for addressing vulnerabilities across the organization.
質問 # 24
Which of the following statements best defines a business continuity plan (BCP)?
- A. A backup strategy that involves periodic copying of data to secondary storage
- B. A data restoration process after a disruptive event occurs
- C. A document that outlines procedures for recovering critical systems and processes after a disaster
- D. A plan that details how an organization will maintain essential functions during and after a disaster
正解:D
解説:
A business continuity plan (BCP) is a comprehensive plan that outlines the strategies and procedures an organization will follow to ensure essential functions can be maintained during and after a disaster. It includes processes, resources, and steps to help minimize the impact of a disruption and ensure business continuity.
質問 # 25
Which technology allows on-demand access to shared pools of configurable computing resources over a network?
- A. Cloud
- B. Proxy
- C. DMZ
- D. Virtualization
正解:A
解説:
Cloud computing refers to the delivery of on-demand computing resources, including servers, storage, databases, networking, software, and analytics, over the internet. It provides organizations with the ability to access and use shared pools of configurable computing resources quickly and easily, without the need for extensive upfront infrastructure investments. Cloud computing offers scalability, cost-efficiency, and flexibility, making it an essential component of modern IT environments.
質問 # 26
Which of the following activities is typically associated with reconnaissance in cybersecurity?
- A. Gathering information about the target network
- B. Identifying vulnerable systems
- C. Preventing unauthorized access
- D. Exploiting vulnerabilities
正解:A
解説:
Reconnaissance in cybersecurity involves gathering information about the target network, such as IP addresses, open ports, and potential vulnerabilities. This information is used to prepare for a potential attack by understanding the target's infrastructure and weaknesses.
質問 # 27
What is a man-in-the-middle attack?
- A. An attack that intercepts and manipulates communication between two parties.
- B. An attack that exploits vulnerabilities in a device's software.
- C. An attack that targets Internet of Things devices.
- D. An attack where an insider intentionally releases sensitive information.
正解:A
解説:
A man-in-the-middle attack occurs when a malicious actor intercepts communication between two parties without their knowledge and manipulates the data exchanged. This can allow the attacker to eavesdrop on conversations, steal sensitive information, or impersonate one of the parties involved.
質問 # 28
Which command-line tool is commonly used to test network connectivity and measure response time?
- A. netstat
- B. ping
- C. nslookup
- D. tcpdump
正解:B
解説:
The correct command-line tool for testing network connectivity and measuring response time is ping. It sends ICMP echo request packets to a specified network device or IP address and waits for the corresponding echo reply, helping to verify if a host is reachable and measure packet latency. However, it is important to note that although ping can provide some basic network testing, it does not capture traffic or packet contents like tcpdump.
質問 # 29
Which feature allows endpoints to communicate directly with each other, bypassing the network?
- A. Peer-to-Peer
- B. VPN
- C. IPS
- D. Firewall
正解:A
解説:
Option 1: Incorrect. A firewall is a network security device that monitors and filters incoming and outgoing network traffic based on predetermined security rules.
Option 2: Incorrect. An IPS (Intrusion Prevention System) is a network security device that monitors network traffic for malicious activity and takes immediate action to prevent attacks.
Option 3: Incorrect. A VPN (Virtual Private Network) is a secure connection between two or more endpoints over a public network, providing encryption and privacy for data communication.
Option 4: Correct. Peer-to-peer (P2P) is a decentralized communication model where endpoints can directly communicate with each other without the need for a central server or network infrastructure.
質問 # 30
Which command-line tool is commonly used to display active network connections?
- A. ping
- B. netstat
- C. nslookup
- D. tcpdump
正解:B
解説:
The correct command-line tool to display active network connections is netstat. It allows you to view open ports, established connections, and other network statistics. It helps in verifying the security assessment information related to active connections.
質問 # 31
Which of the following best describes the role of automated threat intelligence in a cybersecurity system?
- A. It automates the detection and response to security incidents
- B. It provides advanced analytics for proactive threat mitigation
- C. It enables real-time monitoring of threat landscapes
- D. All of the above
正解:D
解説:
Automated threat intelligence plays a multifaceted role in a cybersecurity system. Firstly, it enables real-time monitoring of threat landscapes by continuously collecting and analyzing data from various sources. This allows organizations to stay updated on emerging threats and trends. Secondly, it automates the detection and response to security incidents by leveraging machine learning algorithms and predefined rules. Finally, automated threat intelligence provides advanced analytics for proactive threat mitigation, helping organizations anticipate and prevent potential security breaches.
質問 # 32
What is the purpose of a Virtual Private Network (VPN) in cybersecurity?
- A. To encrypt traffic between two networks
- B. To authenticate users before granting them access
- C. To monitor network traffic for potential security threats
- D. To filter network traffic based on predefined rules
正解:A
解説:
A Virtual Private Network (VPN) is a secure connection established over a public network, such as the internet. Its primary purpose is to encrypt traffic between two networks or between an individual user and a network. By using encryption protocols, VPNs ensure that data transmitted over the network remains confidential and secure, protecting it from unauthorized access or interception.
質問 # 33
Which state of data is appropriate for encrypting sensitive information stored in a database?
- A. Data in use
- B. Data in motion
- C. Data at rest
- D. Data in transit
正解:C
解説:
Data at rest refers to data that is stored on storage devices such as hard drives, databases, or backups. Encrypting sensitive information in a database while it is at rest ensures that even if the database is compromised, the data remains protected, and unauthorized access or theft of the data becomes more challenging.
質問 # 34
Which aspect of the Diamond Model represents the "Infrastructure" used by threat actors?
- A. Capability
- B. Campaign
- C. Adversary
- D. Victim
正解:A
解説:
The Diamond Model is a tool used for analyzing cyber threat intelligence. It consists of four components: Adversary, Victim, Infrastructure, and Capability. The Infrastructure aspect refers to the resources and infrastructure utilized by the threat actors, including networks, servers, and tools.
質問 # 35
Which of the following tools is commonly used to detect intrusions on a network?
- A. Apache Tomcat
- B. Snort
- C. Microsoft Office Suite
- D. Wireshark
正解:B
解説:
Snort is a widely used tool for network intrusion detection and prevention. It is an open-source network security solution that employs a combination of signature-based and anomaly-based detection techniques. Snort can analyze network traffic in real-time, identify suspicious patterns or behavior, and raise alerts in case of potential intrusions or security breaches.
質問 # 36
Which of the following best defines a vulnerability assessment in the context of cybersecurity?
- A. A process that identifies potential cybersecurity threats in an organization.
- B. A process that mitigates the impact of cybersecurity incidents on an organization.
- C. A process that identifies potential security flaws or weaknesses in a system.
- D. A process that determines the level of risk associated with a cybersecurity incident.
正解:C
解説:
A vulnerability assessment is a systematic process that identifies potential security flaws or weaknesses in a system, network, or application. It focuses on identifying vulnerabilities that could be exploited by attackers. It involves scanning and testing for known vulnerabilities and vulnerabilities resulting from misconfigurations or poor security practices. The assessment provides valuable information for organizations to prioritize their efforts in remediating identified vulnerabilities and improving their overall security posture.
質問 # 37
......
100-160時間限定!無料アクセス:https://www.jpntest.com/shiken/100-160-mondaishu
100-160認定有効な試験問題集と解答学習ガイド:https://drive.google.com/open?id=1knTEa7uUE5tM2WtnexapLHmXgXYpwSgR