Cisco 200-201 Practice Test - Questions Answers, Page 18

What is vulnerability management?

A user received an email attachment named 'Hr405-report2609-empl094.exe' but did not run it. Which category of the cyber kill chain should be assigned to this type of event?

An engineer needs to configure network systems to detect command and control communications by decrypting ingress and egress perimeter traffic and allowing network security devices to detect malicious outbound communications. Which technology should be used to accomplish the task?

What is a difference between data obtained from Tap and SPAN ports?

Which metric in CVSS indicates an attack that takes a destination bank account number and replaces it with a different bank account number?

What is a benefit of using asymmetric cryptography?

An organization is cooperating with several third-party companies. Data exchange is on an unsecured channel using port 80 Internal employees use the FTP service to upload and download sensitive data An engineer must ensure confidentiality while preserving the integrity of the communication. Which technology must the engineer implement in this scenario'?

A security engineer notices confidential data being exfiltrated to a domain 'Ranso4134-mware31-895' address that is attributed to a known advanced persistent threat group The engineer discovers that the activity is part of a real attack and not a network misconfiguration. Which category does this event fall under as defined in the Cyber Kill Chain?

How does agentless monitoring differ from agent-based monitoring?