Exam (elaborations)
Palo Alto PCCSA Questions with 100- correct answers(passed).
- Course
- Institution
Palo Alto PCCSA Questions with 100- correct answers(passed).
[Show more]
Content preview
Palo Alto PCCSA Questions with100% correct answers(passed)
In which cloud computing service model does a provider's applications run
on a cloud infrastructure and the consumer does not manage or control
the underlying infrastructure?
A. Platform as a Service (PaaS)
B. Infrastructure as a Service (IaaS)
C. Software as a Service (SaaS)
D. Public Cloud - answer C
Business intelligence (BI) software consists of tools and techniques used
to surface large amounts of raw unstructured data to perform a variety of
tasks including data mining, event processing, and predictive analytics.
(True or False) - answer T
The process in which end users find personal technology and apps that are
more powerful or capable, more convenient, less expensive, quicker to
install, and easier to use than enterprise IT solutions is known as
consumerization. (True or False) - answer T
An organization can be compliant with all applicable security and privacy
regulations for its industry, yet still not be secure. (True or False) - answer
T
The U.S. law that establishes national standards to protect individuals'
medical records and other health information is known as _______. - answer
HIPAA
Most cyberattacks today are perpetrated by internal threat actors such as
malicious employees engaging in corporate espionage. (True or False) -
answer F
,The Cyber-Attack Lifecycle is a five-step process that an attacker goes
through to attack a network. (True or False) - answer F
List the steps of the Cyber-Attack Lifecycle. - answer Reconnaissance,
Weaponization, Delivery, Exploitation, Installation, Command and Control,
Actions on Objectives
An attacker needs to succeed in executing only one step of the Cyber-
Attack Lifecycle to infiltrate a network, whereas a defender must "be right
every time" and break every step of the chain to prevent an attack. (True
or False) - answer F
Which technique is not used to break the command-and-control (C&C)
phase of the Cyber-Attack Lifecycle?
A. Blocking outbound traffic to known malicious sites and IP addresses
B. DNS sinkholing and DNS poisoning
C. Vulnerability and patch management
D. All of the above - answer C
The key to breaking the Cyber-Attack Lifecycle during the Installation
phase is to implement network segmentation, a Zero Trust model, and
granular control of applications to limit or restrict an attacker's lateral
movement within the network. (True or False) - answer T
Network firewalls cannot completely protect hosts from zero-day exploits.
(True or False) - answer T
_______________ exploits target unknown vulnerabilities in operating system
and application software on a host machine. - answer Zero-day
Which option describes malicious software or code that typically takes
control of, collects information from, or damages an infected endpoint?
A. Exploit
B. Malware
, C. Vulnerability
D. None of the above - answer B
Which option is an important characteristic or capability of advanced
malware?
A. Distributed, fault-tolerant architecture
B. Multi-functionality
C. Hiding techniques such as polymorphism, metamorphism, and
obfuscation
D. All of the above - answer D
A vulnerability is a small piece of software code, part of a malformed data
file, or a sequence (string) of commands created by an attacker to cause
unintended or unanticipated behavior in a system or software. (True or
False) - answer F
New exploits can be crafted from any number of more than a thousand
core exploit techniques. (True or False) - answer F
Wired Equivalent Privacy (WEP) is an effective protocol for securing
wireless networks. (True or False) - answer F
A _________________ is a mathematical function that creates a unique
representation of a larger set of data in a manner that is easy to compute
in one direction, but not in the reverse direction. - answer hash
A _________________ sends data packets to destination networks along a
network path using logical addresses. - answer router
Which option is an example of a static routing protocol?
A. Open Shortest Path First (OSPF)
B. Border Gateway Protocol (BGP)
C. Routing Information Protocol (RIP)
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying these notes from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller GUARANTEEDSUCCESS. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy these notes for $15.49. You're not tied to anything after your purchase.
Can Stuvia be trusted?
4.6 stars on Google & Trustpilot (+1000 reviews)
77529 documents were sold in the last 30 days
Founded in 2010, the go-to place to buy study notes for 14 years now