Place the seven steps defined in the Cyber Kill Chain in the correct order. delivery ==> Step 3 installation ==> Step 5 exploitation ==> Step 4 weaponization ==> Step 2 reconnaissance ==> Step 1 action…
Which three things will a threat actor do to prepare a DDoS attack against a target system on the Internet? (Choose three.) Collect and exfiltrate data. Install attack software on…
According to the Cyber Kill Chain model, after a weapon is delivered to a targeted system, what is the next step that a threat actor would take? installation exploitation weaponization…
When establishing a server profile for an organization, which element describes the type of service that an application is allowed to run on the server? user account listening port service…
Lab – Operating System Login (Answer Version) Answer Note: Red font color or gray highlights indicate text that appears in the Answer copy only. Objectives In this activity, you will…
Lab - Privacy and Gaming (Answer Version) Answer Note: Red font color or gray highlights indicate text that appears in the Answer copy only. Objectives In this activity, you will…
Lab - Permissions (Answer Version) Answer Note: Red font color or gray highlights indicate text that appears in the Answer copy only. Objectives In this lab, you will explore the…
Lab - Boot Methods (Answer Version) Answer Note: Red font color or gray highlights indicate text that appears in the Answer copy only. Objectives In this activity, you will investigate…
Lab – Operating System Upgrades (Answer Version) Answer Note: Red font color or gray highlights indicate text that appears in the Answer copy only. Introduction In this lab, you will…
Lab - Safety (Answer Version) Answer Note: Red font color or gray highlights indicate text that appears in the instructor copy only. Objectives In this lab, you will use common…
Which tool captures full data packets with a command-line interface only? nfdump NBAR2 tcpdump Wireshark Explanation & Hint: The command-line tool tcpdump is a packet analyzer. Wireshark is a packet analyzer with…
Which type of data is used by Cisco Cognitive Intelligence to find malicious activity that has bypassed security controls, or entered through unmonitored channels, and is operating inside an enterprise…
Which statement describes the function provided by the Tor network? It distributes user packets through load balancing. It allows users to browse the Internet anonymously. It conceals packet contents by…
Which security function is provided by encryption algorithms? key management authorization integrity confidentiality Explanation & Hint: Encryption algorithms are used to provide data confidentiality, which ensures that if data is…
Which two attacks target web servers through exploiting possible vulnerabilities of input functions used by an application? (Choose two.) SQL injection port scanning port redirection trust exploitation cross-site scripting Explanation…
Which attack is integrated with the lowest levels of the operating system of a host and attempts to completely hide the activities of the threat actor on the local system?…
Which evasion method describes the situation that after gaining access to the administrator password on a compromised host, a threat actor is attempting to login to another host using the…
To which category of security attacks does man-in-the-middle belong? DoS access reconnaissance social engineering Explanation & Hint: With a man-in-the-middle attack, a threat actor is positioned in between two legitimate…
What is an example of a local exploit? Port scanning is used to determine if the Telnet service is running on a remote server. A threat actor performs a brute…
Which attack surface, defined by the SANS Institute, is delivered through the exploitation of vulnerabilities in web, cloud, or host-based applications? host human network software Explanation & Hint: The SANS…