A network administrator is reviewing server alerts because of reports of network slowness. The administrator confirms that an alert was an actual security incident. What is the security alert classification…
Match the monitoring tool to the definition. Explanation & Hint: NetFlow: "provides statistics on packets flowing through a Cisco router or multilayer switch." NetFlow is a network protocol developed by…
An administrator discovers that a user is accessing a newly established website that may be detrimental to company security. What action should the administrator take first in terms of the…
Which statement defines the difference between session data and transaction data in logs? Session data is used to make predictions on network behaviors, whereas transaction data is used to detect…
Which two data types would be classified as personally identifiable information (PII)? (Choose two.) house thermostat reading hospital emergency use per region average number of cattle per region vehicle identification…
A help desk technician notices an increased number of calls relating to the performance of computers located at the manufacturing plant. The technician believes that botnets are causing the issue.…
Match the network service with the description. Explanation & Hint: SNMP (Simple Network Management Protocol): This service "allows administrators to manage network nodes." SNMP is used for network management and…
6.1.2.1 Packet Tracer – Add Computers to an Existing Network Answers Full 100% 2023 2024 This is Cisco 6.1.2.1 Packet Tracer – Add Computers to an Existing Network Answers Full…
The IT security personnel of an organization notice that the web server deployed in the DMZ is frequently targeted by threat actors. The decision is made to implement a patch…
What is the benefit of converting log file data into a common schema? allows easy processing and analysis of datasets creates a data model based on fields of data from…
Which host-based firewall uses a three-profile approach to configure the firewall functionality? TCP Wrapper nftables iptables Windows Firewall Answers Explanation & Hints: Windows Firewall uses a profile-based approach to configuring…
Match the tabs of the Windows 10 Task Manager to their functions. (Not all options are used.) Explanation & Hint: Performance: Displays resource utilization information for CPU, memory, network, disk,…
What two assurances does digital signing provide about code that is downloaded from the Internet? (Choose two.) The code has not been modified since it left the software publisher. The…
Which two features are included by both TACACS+ and RADIUS protocols? (Choose two.) SIP support 802.1X support password encryption utilization of transport layer protocols separate authentication and authorization processes Answers…
What are two uses of an access control list? (Choose two.) ACLs can control which areas a host can access on a network. Standard ACLs can restrict access to specific…
Which method can be used to harden a device? allow USB auto-detection maintain use of the same passwords use SSH and disable the root account access over SSH allow default…
Match the network monitoring data type with the description. Explanation & Hint: Statistical Data: Used to describe and analyze network flow or performance data. Statistical data typically includes summaries of…
What is a key difference between the data captured by NetFlow and data captured by Wireshark? NetFlow collects metadata from a network flow whereas Wireshark captures full data packets. NetFlow…
Match the attack surface with attack exploits. Explanation & Hint: Network Attack Surface: These attacks include conventional wired and wireless network protocols, as well as other wireless protocols used by…
What debugging security tool can be used by black hats to reverse engineer binary files when writing exploits? WinDbg Firesheep AIDE Skipfish Explanation & Hint: The tool among the options…