Based on the command output shown, which file permission or permissions have been assigned to the other user group for the data.txt file? ls –l data.txt -rwxrw-r-- sales staff 1028…
Which two actions can be taken when configuring Windows Firewall? (Choose two.) Enable MAC address authentication. Turn on port screening. Manually open ports that are required for specific applications. Allow…
Which statement describes the state of the administrator and guest accounts after a user installs Windows desktop version to a new computer? By default, both the administrator and guest accounts…
How does a security information and event management system (SIEM) in a SOC help the personnel fight against security threats? by analyzing logging data in real time by dynamically implementing…
Match the job titles to SOC personnel positions. (Not all options are used.) Explanation & Hint: Tier 1 Alert Analyst: Monitors incoming alerts and verifies that a true incident has…
What two kinds of personal information can be sold on the dark web by cybercriminals? (Choose two.) city of residence Facebook photos name of a pet street address name of…
Users report that a database file on the main server cannot be accessed. A database administrator verifies the issue and notices that the database file is now encrypted. The organization…
In which step of the NIST incident response process does the CSIRT perform an analysis to determine which networks, systems, or applications are affected; who or what originated the incident;…
Which statement describes a Cisco Web Security Appliance (WSA)? It functions as a web proxy. It provides high performance web services. It acts as an SSL-based VPN server for an…
Match the Windows host log to the messages contained in it. (Not all options are used.) Explanation & Hint: Setup logs: These typically contain information related to the installation of…
Which two tools have a GUI interface and can be used to view and analyze full packet captures? (Choose two.) Splunk nfdump tcpdump Wireshark Cisco Prime Network Analysis Module Answers…
Which two options are network security monitoring approaches that use advanced analytic techniques to analyze network telemetry data? (Choose two.) NBA Sguil IPFIX NBAD Snorby NetFlow Answers Explanation & Hints:…
Which statement describes statistical data in network security monitoring processes? It contains conversations between network hosts. It lists each alert message along with statistical information. It shows the results of…
Which statement describes session data in security logs? It shows the result of network sessions. It is a record of a conversation between network hosts. It can be used to…
Which function is provided by the Sguil application? It detects potential network intrusions. It prevents malware from attacking a host. It makes Snort-generated alerts readable and searchable. It reports conversations…
Which two technologies are primarily used on peer-to-peer networks? (Choose two.) Bitcoin BitTorrent Darknet Snort Wireshark Answers Explanation & Hints: Bitcoin is used to share a distributed database or ledger.…
Which technique is necessary to ensure a private transfer of data using a VPN? authorization encryption scalability virtualization Answers Explanation & Hints: Confidential and secure transfers of data with VPNs…
Which ICMP message type should be stopped inbound? echo echo-reply unreachable source quench Answers Explanation & Hints: The echo ICMP packet should not be allowed inbound on an interface. The…
Why does HTTPS technology add complexity to network security monitoring? HTTPS uses tunneling technology for confidentiality. HTTPS hides the true source IP address using NAT/PAT. HTTPS conceals data traffic through…
How can IMAP be a security threat to a company? Encrypted data is decrypted. Someone inadvertently clicks on a hidden iFrame. An email can be used to bring malware to…