Which two types of messages are used in place of ARP for address resolution in IPv6? (Choose two.) anycast broadcast echo reply echo request neighbor solicitation neighbor advertisement Answers Explanation…
What is the prefix length notation for the subnet mask 255.255.255.224? /25 /26 /27 /28 Answers Explanation & Hints: The binary format for 255.255.255.224 is 11111111.11111111.11111111.11100000. The prefix length is…
When a connectionless protocol is in use at a lower layer of the OSI model, how is missing data detected and retransmitted if necessary? Connectionless acknowledgements are used to request…
Which two protocols are associated with the transport layer? (Choose two.) TCP IP UDP PPP ICMP Answers Explanation & Hints: TCP and UDP reside at the transport layer in both…
What are three benefits of using symbolic links over hard links in Linux? (Choose three.) Symbolic links can be exported. They can be encrypted. They can be compressed. They can…
Based on the command output shown, which file permission or permissions have been assigned to the other user group for the data.txt file? ls –l data.txt -rwxrw-r-- sales staff 1028…
Which two actions can be taken when configuring Windows Firewall? (Choose two.) Enable MAC address authentication. Turn on port screening. Manually open ports that are required for specific applications. Allow…
Which statement describes the state of the administrator and guest accounts after a user installs Windows desktop version to a new computer? By default, both the administrator and guest accounts…
How does a security information and event management system (SIEM) in a SOC help the personnel fight against security threats? by analyzing logging data in real time by dynamically implementing…
Match the job titles to SOC personnel positions. (Not all options are used.) Explanation & Hint: Tier 1 Alert Analyst: Monitors incoming alerts and verifies that a true incident has…
What two kinds of personal information can be sold on the dark web by cybercriminals? (Choose two.) city of residence Facebook photos name of a pet street address name of…
Users report that a database file on the main server cannot be accessed. A database administrator verifies the issue and notices that the database file is now encrypted. The organization…
In which step of the NIST incident response process does the CSIRT perform an analysis to determine which networks, systems, or applications are affected; who or what originated the incident;…
Which statement describes a Cisco Web Security Appliance (WSA)? It functions as a web proxy. It provides high performance web services. It acts as an SSL-based VPN server for an…
Match the Windows host log to the messages contained in it. (Not all options are used.) Explanation & Hint: Setup logs: These typically contain information related to the installation of…
Which two tools have a GUI interface and can be used to view and analyze full packet captures? (Choose two.) Splunk nfdump tcpdump Wireshark Cisco Prime Network Analysis Module Answers…
Which two options are network security monitoring approaches that use advanced analytic techniques to analyze network telemetry data? (Choose two.) NBA Sguil IPFIX NBAD Snorby NetFlow Answers Explanation & Hints:…
Which statement describes statistical data in network security monitoring processes? It contains conversations between network hosts. It lists each alert message along with statistical information. It shows the results of…
Which statement describes session data in security logs? It shows the result of network sessions. It is a record of a conversation between network hosts. It can be used to…
Which function is provided by the Sguil application? It detects potential network intrusions. It prevents malware from attacking a host. It makes Snort-generated alerts readable and searchable. It reports conversations…