350-201 Practice Exams and Training Solutions for Certifications [Q66-Q84]

Share

350-201 Practice Exams and Training Solutions for Certifications

Dumps Free Test Engine Player Verified Answers

NEW QUESTION # 66
What is the HTTP response code when the REST API information requested by the authenticated user cannot be found?

  • A. 0
  • B. 1
  • C. 2
  • D. 3
  • E. 4

Answer: A

Explanation:
Explanation
Explanation/Reference: https://airbrake.io/blog/http-errors/401-unauthorized-error#:~:text=The%20401%20Unauthorized%
20Error%20is,client%20could%20not%20be%20authenticated.


NEW QUESTION # 67
What is a limitation of cyber security risk insurance?

  • A. It does not cover the costs of damage done by third parties as a result of a cyber attack
  • B. It does not cover the costs to hire forensics experts to analyze the cyber attack
  • C. It does not cover the costs to hire a public relations company to help deal with a cyber attack
  • D. It does not cover the costs to restore stolen identities as a result of a cyber attack

Answer: D

Explanation:
Explanation/Reference: https://tplinsurance.com/products/cyber-risk-insurance/


NEW QUESTION # 68
An engineer received an alert of a zero-day vulnerability affecting desktop phones through which an attacker sends a crafted packet to a device, resets the credentials, makes the device unavailable, and allows a default administrator account login. Which step should an engineer take after receiving this alert?

  • A. Search for a patch to install from the vendor
  • B. Initiate a triage meeting to acknowledge the vulnerability and its potential impact
  • C. Implement restrictions within the VoIP VLANS
  • D. Determine company usage of the affected products

Answer: A


NEW QUESTION # 69
Which action should be taken when the HTTP response code 301 is received from a web application?

  • A. Confirm the resource's location.
  • B. Modify the session timeout setting.
  • C. Update the cached header metadata.
  • D. Increase the allowed user limit.

Answer: C


NEW QUESTION # 70
Drag and drop the cloud computing service descriptions from the left onto the cloud service categories on the right.

Answer:

Explanation:


NEW QUESTION # 71
An engineer received multiple reports from users trying to access a company website and instead of landing on the website, they are redirected to a malicious website that asks them to fill in sensitive personal dat a. Which type of attack is occurring?

  • A. Address Resolution Protocol poisoning
  • B. session hijacking attack
  • C. teardrop attack
  • D. Domain Name System poisoning

Answer: D


NEW QUESTION # 72
Refer to the exhibit.

The Cisco Secure Network Analytics (Stealthwatch) console alerted with "New Malware Server Discovered" and the IOC indicates communication from an end-user desktop to a Zeus C&C Server. Drag and drop the actions that the analyst should take from the left into the order on the right to investigate and remediate this IOC.

Answer:

Explanation:


NEW QUESTION # 73
Drag and drop the phases to evaluate the security posture of an asset from the left onto the activity that happens during the phases on the right.

Answer:

Explanation:


NEW QUESTION # 74
An organization is using a PKI management server and a SOAR platform to manage the certificate lifecycle. The SOAR platform queries a certificate management tool to check all endpoints for SSL certificates that have either expired or are nearing expiration. Engineers are struggling to manage problematic certificates outside of PKI management since deploying certificates and tracking them requires searching server owners manually. Which action will improve workflow automation?

  • A. Integrate a SOAR solution with Active Directory to pull server owner details from the AD and send an automated email for problematic certificates requesting updates.
  • B. Implement a new workflow within SOAR to create tickets in the incident response system, assign problematic certificate update requests to server owners, and register change requests.
  • C. Implement a new workflow for SOAR to fetch a report of assets that are outside of the PKI zone, sort assets by certification management leads and automate alerts that updates are needed.
  • D. Integrate a PKI solution within SOAR to create certificates within the SOAR engines to track, update, and monitor problematic certificates.

Answer: C


NEW QUESTION # 75
What is a principle of Infrastructure as Code?

  • A. Comprehensive initial designs support robust systems
  • B. System maintenance is delegated to software systems
  • C. System downtime is grouped and scheduled across the infrastructure
  • D. Scripts and manual configurations work together to ensure repeatable routines

Answer: A


NEW QUESTION # 76
What is the impact of hardening machine images for deployment?

  • A. increases the speed of patch deployment
  • B. increases the availability of threat alerts
  • C. reduces the steps needed to mitigate threats
  • D. reduces the attack surface

Answer: D


NEW QUESTION # 77
An engineer notices that unauthorized software was installed on the network and discovers that it was installed by a dormant user account. The engineer suspects an escalation of privilege attack and responds to the incident. Drag and drop the activities from the left into the order for the response on the right.

Answer:

Explanation:


NEW QUESTION # 78
Where do threat intelligence tools search for data to identify potential malicious IP addresses, domain names, and URLs?

  • A. Internet
  • B. customer data
  • C. internal database
  • D. internal cloud

Answer: A


NEW QUESTION # 79
How does Wireshark decrypt TLS network traffic?

  • A. with a key log file using per-session secrets
  • B. using an RSA public key
  • C. by observing DH key exchange
  • D. by defining a user-specified decode-as

Answer: A

Explanation:
Explanation/Reference: https://wiki.wireshark.org/TLS


NEW QUESTION # 80
Drag and drop the type of attacks from the left onto the cyber kill chain stages at which the attacks are seen on the right.

Answer:

Explanation:


NEW QUESTION # 81
An engineer has created a bash script to automate a complicated process. During script execution, this error occurs: permission denied. Which command must be added to execute this script?

  • A. source ex.sh
  • B. chmod +x ex.sh
  • C. chroot ex.sh
  • D. sh ex.sh

Answer: B


NEW QUESTION # 82
An organization had a breach due to a phishing attack. An engineer leads a team through the recovery phase of the incident response process. Which action should be taken during this phase?

  • A. Host a discovery meeting and define configuration and policy updates
  • B. Identify the systems that have been affected and tools used to detect the attack
  • C. Update the IDS/IPS signatures and reimage the affected hosts
  • D. Identify the traffic with data capture using Wireshark and review email filters

Answer: B


NEW QUESTION # 83
The SIEM tool informs a SOC team of a suspicious file. The team initializes the analysis with an automated sandbox tool, sets up a controlled laboratory to examine the malware specimen, and proceeds with behavioral analysis. What is the next step in the malware analysis process?

  • A. Contain the subnet in which the suspicious file was found.
  • B. Perform static and dynamic code analysis of the specimen.
  • C. Unpack the specimen and perform memory forensics.
  • D. Document findings and clean-up the laboratory.

Answer: C


NEW QUESTION # 84
......

Q&As with Explanations Verified & Correct Answers: https://www.prep4away.com/Cisco-certification/braindumps.350-201.ete.file.html

350-201 Dumps with Free 365 Days Update Fast Exam Updates: https://drive.google.com/open?id=1eaC-cIo5k1ogJN4v-FmFf0SC5IucWeLP