ExamGecko
Login
Home / Cisco / 200-201 / List of questions
Ask Question

Cisco 200-201 Practice Test - Questions Answers, Page 31

List of questions

Question 301

Report Export Collapse

What is the communication channel established from a compromised machine back to the attacker?

Become a Premium Member for full access
  Unlock Premium Member

Question 302

Report Export Collapse

What is the dataflow set in the NetFlow flow-record format?

Become a Premium Member for full access
  Unlock Premium Member

Question 303

Report Export Collapse

Refer to the exhibit.

Cisco 200-201 image Question 303 109480 10072024004349000000

Which alert is identified from this packet capture?

Become a Premium Member for full access
  Unlock Premium Member

Question 304

Report Export Collapse

Which element is included in an incident response plan as stated m NIST SP800-617

Become a Premium Member for full access
  Unlock Premium Member

Question 305

Report Export Collapse

What does the Zero Trust security model signify?

Become a Premium Member for full access
  Unlock Premium Member

Question 306

Report Export Collapse

Which technique is a low-bandwidth attack?

Become a Premium Member for full access
  Unlock Premium Member

Question 307

Report Export Collapse

Which action matches the weaponization step of the Cyber Kill Chain model?

Become a Premium Member for full access
  Unlock Premium Member

Question 308

Report Export Collapse

An engineer must configure network systems to detect command-and-control communications by decrypting ingress and egress perimeter traffic and allowing network security devices to detect malicious outbound communications. Which technology must be used to accomplish this task?

Become a Premium Member for full access
  Unlock Premium Member

Question 309

Report Export Collapse

Refer to the exhibit.

Cisco 200-201 image Question 309 109486 10072024004349000000

A company's user HTTP connection to a malicious site was blocked according to configured policy What is the source technology used for this measure'?

Become a Premium Member for full access
  Unlock Premium Member

Question 310

Report Export Collapse

Refer to the exhibit.

Cisco 200-201 image Question 310 109487 10072024004349000000

What is the outcome of the command?

Become a Premium Member for full access
  Unlock Premium Member
Total 331 questions
Go to page: of 34
Open VPLUS File
Convert VPLUS to PDF

Related questions

Refer to the exhibit. What should be interpreted from this packet capture?
An organization that develops high-end technology is going through an internal audit The organization uses two databases The main database stores patent information and a secondary database stores employee names and contact information A compliance team is asked to analyze the infrastructure and identify protected data Which two types of protected data should be identified? (Choose two)
Which security principle is violated by running all processes as root or administrator?
According to CVSS, what is a description of the attack vector score?
What is a difference between SIEM and SOAR?
Refer to the exhibit. What is the potential threat identified in this Stealthwatch dashboard?
DRAG DROP Drag and drop the technology on the left onto the data type the technology provides on the right.
What is a comparison between rule-based and statistical detection?
A SOC analyst detected connections to known C&C and port scanning activity to main HR database servers from one of the HR endpoints via Cisco StealthWatch. What are the two next steps of the SOC team according to the NISTSP800-61 incident handling process? (Choose two)
Refer to the exhibit. In which Linux log file is this output found?