200-201無料問題集「Cisco Understanding Cisco Cybersecurity Operations Fundamentals」

質問 1

Which piece of information is needed for attribution in an investigation?

（A）RDP allowed from the Internet

（B）proxy logs showing the source RFC 1918 IP addresses

（C）802.1x RADIUS authentication pass arid fail logs

（D）known threat actor behavior

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 2

A developer is working on a project using a Linux tool that enables writing processes to obtain these required results:
* If the process is unsuccessful, a negative value is returned.
* If the process is successful, 0 value is returned to the child process, and the process ID is sent to the parent process.
Which component results from this operation?

（A）macros for managing CPU sets

（B）new process created by parent process

（C）process spawn scheduled

（D）parent directory name of a file pathname

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 3

Refer to the exhibit.

An analyst received this alert from the Cisco ASA device, and numerous activity logs were produced. How should this type of evidence be categorized?

（A）circumstantial

（B）indirect

（C）best

（D）corroborative

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 4

In digital communications, which method is recommended for securely exchanging public keys between users T0n2262144790 and D4n4126220794?

（A）Hardware Security Module

（B）Automated Certificate Management Environment

（C）Pretty Good Privacy

（D）Secure Multipurpose Internet Mail Extensions

正解：C 解答を投票する

質問 5

What is a sandbox interprocess communication service?

（A）A collection of interfaces that allow for coordination of activities among processes.

（B）A collection of host services that allow for communication between sandboxes.

（C）A collection of rules within the sandbox that prevent the communication between sandboxes.

（D）A collection of network services that are activated on an interface, allowing for inter-port communication.

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 6

What is the advantage of agent-based protection compared to agentless protection?

（A）easier to manage due to the centralized platform

（B）monitors and detects traffic locally

（C）lower resource requirements during implementation

（D）manages unlimited devices simultaneously

正解：A 解答を投票する

質問 7

Which two components reduce the attack surface on an endpoint? (Choose two.)

（A）full packet captures at the endpoint

（B）load balancing

（C）secure boot

（D）restricting USB ports

（E）increased audit log levels

正解：C、D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 8

Which process represents the application-level allow list?

（A）allowing specific format files and deny executable files

（B）allowing everything and denying specific executable files

（C）allowing everything and denying specific applications protocols

（D）allowing specific files and deny everything else

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 9

How does an attack surface differ from an attack vector?

（A）An attack surface identifies vulnerable parts for an attack, and an attack vector specifies which attacks are feasible to those parts.

（B）An attack vector recognizes the potential outcomes of an attack, and the attack surface is choosing a method of an attack.

（C）An attack surface mitigates external vulnerabilities, and an attack vector identifies mitigation techniques and possible workarounds.

（D）An attack vector matches components that can be exploited, and an attack surface classifies the potential path for exploitation

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 10

What do host-based firewalls protect workstations from?

（A）zero-day vulnerabilities

（B）malicious web scripts

（C）viruses

（D）unwanted traffic

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 11

Which signature impacts network traffic by causing legitimate traffic to be blocked?

（A）false positive

（B）false negative

（C）true positive

（D）true negative

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 12

How does statistical detection differ from rule-based detection?

（A）Statistical detection defines legitimate data over time, and rule-based detection works on a predefined set of rules

（B）Statistical detection involves the evaluation of events, and rule-based detection requires an evaluated set of events to function.

（C）legitimate data over a period of time, and statistical detection works on a predefined set of rules

（D）Rule-based detection involves the evaluation of events, and statistical detection requires an evaluated set of events to function Rule-based detection defines

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 13

Drag and drop the data source from the left onto the data type on the right.

正解：

質問 14

What is the difference between an attack vector and attack surface?

（A）An attack surface identifies vulnerabilities that require user input or validation; and an attack vector identifies vulnerabilities that are independent of user actions.

（B）An attack vector identifies components that can be exploited, and an attack surface identifies the potential path an attack can take to penetrate the network.

（C）An attack vector identifies the potential outcomes of an attack; and an attack surface launches an attack using several methods against the identified vulnerabilities.

（D）An attack surface recognizes which network parts are vulnerable to an attack; and an attack vector identifies which attacks are possible with these vulnerabilities.

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 15

A large load of data is being transferred to an external destination via UDP 53 port. Which obfuscation technique is used?

（A）data masking

（B）proxied traffic

（C）C&C connection

（D）DNS tunneling

正解：D 解答を投票する

200-201 無料問題集「Cisco Understanding Cisco Cybersecurity Operations Fundamentals」

弊社を連絡する

関連リンク

トップ試験