CBROPS Practice Exam Questions Graded A+ And Answers
4 views 0 purchase
Course
CBROPS
Institution
CBROPS
Explanation: Cisco Cognitive Intelligence utilizes statistical data for statistical analysis in order to find malicious activity that has bypassed security controls, or entered through unmonitored channels (including removable media), and is operating inside the network of an organization. - ANS ...
CBROPS Practice Exam Questions
Graded A+ And Answers
statistical
Explanation: Cisco Cognitive Intelligence utilizes statistical data for statistical analysis in order to
find malicious activity that has bypassed security controls, or entered through unmonitored
channels (including removable media), and is operating inside the network of an organization. -
ANS Which type of data is used by Cisco Cognitive Intelligence to find malicious activity
that has bypassed security controls, or entered through unmonitored channels, and is operating
inside an enterprise network?
statistical
session
alert
transaction
traffic fragmentation
Explanation: In order to keep the malicious payload from being recognized by security sensors,
such as IPS or IDS, perpetrators fragment the data into smaller packets.These fragments can
be passed by sensors that do not reassemble the data before scanning. - ANS Which type
of evasion technique splits malicious payloads into smaller packets in order to bypass security
sensors that do not reassemble the payloads before scanning them?
Explanation: The scope metric is impacted by an exploited vulnerability that can affect resources
beyond the authorized privileges of the vulnerable component or that are managed by a
different security authority. - ANS A security analyst is investigating a cyber attack that
began by compromising one file system through a vulnerability in a custom software application.
The attack now appears to be affecting additional file systems under the control of another
, security authority. Which CVSS v3.0 base exploitability metric score is increased by this attack
characteristic?
privileges required
scope
attack complexity
user interaction
0{4}
Explanation: The regular expression 0{4} matches any string that contains 4 repetitions of zero
or 4 consecutive zeros. - ANS Which regular expression would match any string that
contains 4 consecutive zeros?
{0-4}
[0-4]
0{4}
^0000
checksum
destination port
source port
Explanation: The UPD header has four fields. Three of these fields are in common with the TCP
header. These three fields are the source port, destination port, and checksum. - ANS
Which three fields are found in both the TCP and UDP headers? (Choose three.)
window
checksum
options
sequence number
destination port
source port
NetFlow collects metadata from a network flow whereas Wireshark captures full data packets.
Explanation: Wireshark captures the entire contents of a packet. NetFlow does not. Instead,
NetFlow collects metadata, or data about the flow. - ANS What is a key difference between
the data captured by NetFlow and data captured by Wireshark?
NetFlow provides transaction data whereas Wireshark provides session data.
NetFlow data is analyzed by tcpdump whereas Wireshark data is analyzed by nfdump.
NetFlow collects metadata from a network flow whereas Wireshark captures full data packets.
NetFlow data shows network flow contents whereas Wireshark data shows network flow
statistics.
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying these notes from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller DocLaura. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy these notes for $10.39. You're not tied to anything after your purchase.