ExamGecko
Login
Home / Cisco / 200-201 / List of questions
Ask Question

Cisco 200-201 Practice Test - Questions Answers, Page 32

List of questions

Question 311

Report Export Collapse

A network engineer noticed in the NetFlow report that internal hosts are sending many DNS requests to external DNS servers A SOC analyst checked the endpoints and discovered that they are infected and became part of the botnet Endpoints are sending multiple DNS requests but with spoofed IP addresses of valid external sources What kind of attack are infected endpoints involved in1?

Become a Premium Member for full access
  Unlock Premium Member

Question 312

Report Export Collapse

Which items is an end-point application greylist used?

Become a Premium Member for full access
  Unlock Premium Member

Question 313

Report Export Collapse

Which type of data is used to detect anomalies in the network?

Become a Premium Member for full access
  Unlock Premium Member

Question 314

Report Export Collapse

An engineer must investigate suspicious connections. Data has been gathered using a tcpdump command on a Linux device and saved as sandboxmatware2022-12-22.pcaps file. The engineer is trying to open the tcpdump in the Wireshark tool. What is the expected result?

Become a Premium Member for full access
  Unlock Premium Member

Question 315

Report Export Collapse

Refer to the exhibit.

Cisco 200-201 image Question 315 109492 10072024004349000000

What does this Cuckoo sandbox report indicate?

Become a Premium Member for full access
  Unlock Premium Member

Question 316

Report Export Collapse

A security engineer must protect the company from known issues that trigger adware. Recently new incident has been raised that could harm the system. Which security concepts are present in this scenario?

Become a Premium Member for full access
  Unlock Premium Member

Question 317

Report Export Collapse

An engineer configured regular expression ''.''\.(pd][Oo][Cc)|[Xx][LI][Ss]|[Pp][Pp][Tt]) HTTP/1 .[01]' on Cisco ASA firewall. What does this regular expression do?

Become a Premium Member for full access
  Unlock Premium Member

Question 318

Report Export Collapse

What is a comparison between rule-based and statistical detection?

Become a Premium Member for full access
  Unlock Premium Member

Question 319

Report Export Collapse

What is a comparison between rule-based and statistical detection?

Become a Premium Member for full access
  Unlock Premium Member

Question 320

Report Export Collapse

Refer to the exhibit.

Cisco 200-201 image Question 320 109497 10072024004349000000

Which attack is being attempted against a web application?

Become a Premium Member for full access
  Unlock Premium Member
Total 331 questions
Go to page: of 34
Open VPLUS File
Convert VPLUS to PDF

Related questions

Refer to the exhibit. What should be interpreted from this packet capture?
An organization that develops high-end technology is going through an internal audit The organization uses two databases The main database stores patent information and a secondary database stores employee names and contact information A compliance team is asked to analyze the infrastructure and identify protected data Which two types of protected data should be identified? (Choose two)
Which security principle is violated by running all processes as root or administrator?
According to CVSS, what is a description of the attack vector score?
What is a difference between SIEM and SOAR?
Refer to the exhibit. What is the potential threat identified in this Stealthwatch dashboard?
DRAG DROP Drag and drop the technology on the left onto the data type the technology provides on the right.
What is a comparison between rule-based and statistical detection?
A SOC analyst detected connections to known C&C and port scanning activity to main HR database servers from one of the HR endpoints via Cisco StealthWatch. What are the two next steps of the SOC team according to the NISTSP800-61 incident handling process? (Choose two)
Refer to the exhibit. In which Linux log file is this output found?