How Does A Program Using The Stdcall Calling Convention Clean Up The Stack After A Procedure Call?

IBM Cybersecurity Analyst Professional Certificate Assessment Test Quiz Answers

Warning: Jo Answer Greenish hai wo correct hai but

Jo Dark-green Nahi hai. Usme se jo ek wrong selection tha usko hata diya hai

Question 1)

Implementing a Security Sensation training program would be an case of which type of command?

• Authoritative control

Question 2)

Putting locks on a door is an instance of which type of control?

• Preventative

Question three)

How would yous classify a piece of malicious lawmaking that can replicate itself and spread to new systems?

• A worm

Question four)

To engage in packet sniffing, y'all must implement promiscuous style on which device ?

• A network bill of fare
• An Intrusion Detection System (IDS)
• A sniffing router

Question 5)

Which mechanism would help assure the integrity of a bulletin, but not practice much to assure confidentiality or availability.

• Hashing

Question six)

An organization wants to restrict employee after-hours access to its systems so it publishes a policy forbidding employees to piece of work outside of their assigned hours, and then makes certain the office doors remain locked on weekends. What two (2) types of controls are they using? (Select 2)

• Physical
• Administrative

Question 7)

Which 2 factors contribute to cryptographic strength? (Select 2)

• The employ of cyphers that are based on complex mathematical algorithms
• The use of cyphers that take undergone public scrutiny

Question viii)

Trying to break an encryption key by trying every possible combination of characters is chosen what?

• A brute force attack

Question ix)

Which of the post-obit describes the cadre goals of IT security?

• The Open Web Application Security Project (OWASP) Framework
• The Business Process Management Framework
• The CIA Triad

Question ten)

Which 3 (3) roles are typically found in an Information Security organization? (Select three)

• Vulnerability Assessor
• Chief Information Security Officer (CISO)
• Penetration Tester

Question 11)

Problem Direction, Modify Management, and Incident Direction are all fundamental processes of which framework?

• ITIL

Question 12)

Alice sends a message to Bob that is intercepted by Trudy. Which scenario describes an integrity violation?

• Trudy changes the message and then forrad it on
• Trudy deletes the message without forwarding information technology
• Trudy reads the message
• Trudy cannot read it because information technology is encrypted but allows information technology to exist delivered to Bob in its original grade

Question thirteen)

In cybersecurity, Accountability is defined every bit what?

• Being able to map an action to an identity

Question fourteen)

Multifactor authentication (MFA) requires more than i authentication method to exist used earlier identity is authenticated. Which 3 (3) are authentication methods? (Select three)

• Something a person is
• Something a person has
• Something a person knows

Question fifteen)

Which 3 (3) of the following are Physical Access Controls? (Select iii)

• Door locks
• Security guards
• Fences

Question 16)

If y'all are setting upwardly a Windows 10 laptop with a 32Gb hard drive, which two (2) file system could you select? (Select ii)

• NTFS
• FAT32

Question 17)

Which iii (three) permissions can exist attack a file in Linux? (Select 3)

• write
• execute
• read

Question 18)

If cost is the primary business, which blazon of cloud should be considered start?

• Public cloud

Question 19)

Consolidating and virtualizing workloads should exist washed when?

• Before moving the workloads to the deject

Question 20)

Which of the following is a cocky-regulating standard set up by the credit card industry in the US?

• PCI-DSS

Question 21)

Which two (two) of the following attack types target endpoints?

• Advertizement Network
• Spear Phishing

Question 22)

If an Endpoint Detection and Response (EDR) arrangement detects that an endpoint does not have a required patch installed, which statement best characterizes the deportment it is able to take automatically?

• The endpoint tin can be quarantined from all network resources except those that let information technology to download and install the missing patch

Question 23)

Granting access to a user based upon how high up he is in an system violates what basic security premise?

• The principle of least privileges

Question 24)

The Windows Security App available in Windows ten provides uses with which of the post-obit protections?

• Firewall and network protection
• Family options (parental controls)
• All of the above

Question 25)

Hashing ensures which of the following?

• Integrity

Question 26)

Which of the following practices helps assure the best results when implementing encryption?

• Choose a reliable and proven published algorithm
• Develop a unique cryptographic algorithm for your organization and go on them secret

Question 27)

Which of these methods ensures the authentication, non-repudiation and integrity of a digital advice?

• Use of digital signatures

Question 28)

Which of the following practices will help assure the confidentiality of data in transit?

• Disable certificate pinning
• Have cocky-signed certificates
• Implement HTTP Strict Transport Protocol (HSTS)

Question 29)

Which three (3) of these are benefits you can realize from using a NAT (Network Address Translation) router? (Select three)

• Allows static one-to-1 mapping of local IP addresses to global IP addresses
• Allows dynamic mapping of many local IP addresses to a smaller number of global IP address merely when they are needed
• Allows internal IP addresses to be subconscious from outside observers

Question 30)

Which argument all-time describes configuring a NAT router to use static mapping?

• The organization volition need as many registered IP addresses as it has computers that need Cyberspace access

Question 31)

If a computer needs to send a message to a system that is role of the local network, where does it send the message?

• To the system's MAC address

Question 32)

Which are properties of a highly available arrangement?

• Redundancy, failover and monitoring

Question 33)

Which three (iii) of these statements about the UDP protocol are True? (Select three)

• UDP is faster than TCP
• UDP packets are reassembled by the receiving organization in whatever society they are received
• UDP is connectionless

Question 34)

What is one difference between a Stateful Firewall and a Adjacent Generation Firewall?

• A NGFW understand which application sent a given bundle

Question 35)

You are concerned that your organization is really not very experienced with securing data sources. Which hosting model would crave you to secure the fewest data sources?

• SaaS

Question 36)

Hassan is an engineer who works a normal solar day shift from his company's headquarters in Austin, TX USA. Which two (2) of these activities raise the most crusade for concern? (Select 2)

• Each dark Hassan logs into his business relationship from an Isp in China
• One evening, Hassan downloads all of the files associated with the new product he is working on

Question 37)

Which three (3) of the post-obit are considered safe coding practices? (Select three)

• Use library functions in identify of OS commands
• Avoid using Os commands whenever possible
• Avert running commands through a shell interpreter

Question 38)

Which three (three) items should exist included in the Planning step of a penetration test? (Select iii)

• Informing Need-to-know employees
• Establishing Boundaries
• Setting Objectives

Question 39)

Which portion of the pentest report would cover the risk ranking, recommendations and roadmap?

• Executive Summary

Question xl)

Spare workstations and servers, blank removable media, packet sniffers and protocol analyzers, all belong to which Incident Response resource category?

• Incident Post-Analysis Resources
• Incident Assay Hardware and Software

Question 41)

NIST recommends considering a number of items, including a high level of testing and monitoring, during which stage of a comprehensive Containment, Eradication & Recovery strategy?

• Recovery

Question 42)

True or False. Digital forensics is effective in solving cyber crimes only is not considered effective in solving vehement crimes such as rape and murder.

• False

Question 43)

Which three (3) are mutual obstacles faced when trying to examine forensic information? (Select iii)

• Selecting the right tools to help filter and exclude irrelevant information
• Finding the relevant files among the hundreds of thousands found on most difficult drives
• Bypassing controls such every bit passwords

Question 44)

What scripting concept will repeatedly execute the same block of code while a specified condition remains true?

• Loops

Question 45)

Which two (two) statements about Python are true? (Select 2)

• Python code is considered like shooting fish in a barrel to debug compared with other popular programming languages
• Python code is considered very readable by novice programmers

Question 46)

In the Python statement

pi="iii"

What data type is the data blazon of the variable pi?

• str

Question 47)

What will be printed past the following cake of Python code?

def Add5(in)

 out=in+5

 return out

 impress(Add5(10))

• 15

Question 48)

Which threat intelligence framework was developed by the Us Government to enable consistent label and categorization of cyberthreat events?

• Cyber Threat Framework

Question 49)

Truthful or False. An organization's security immune system should exist integrated with outside organizations, including vendors and other third-parties.

• True

Question 50)

Which three (iii) of these are amid the peak 12 capabilities that a good data security and protection solution should provide? (Select 3)

• Vulnerability assessment
• Real-time alerting
• Tokenization

Question 51)

True or Imitation. For iOS and Android mobile devices, users must interact with the operating arrangement only through a series of applications, simply not directly.

• True

Question 52)

All industries accept their own unique data security challenges. Which of these industries has a particular business with PCI-DSS compliance while having a large number of access points staffed past low-level employees who have access to payment card data?

• Retail

Question 53)

True or False. WireShark has an impressive assortment of features and is distributed free of charge.

• True

Question 54)

In which component of a Common Vulnerability Score (CVSS) would privileges required exist reflected?

• Base of operations-Exploitability Subscore

Question 55)

The Decommission step in the DevSecOps Release, Deploy & Decommission stage contains which of these activities?

• IAM controls to regulate authorisation

Question 56)

You calculate that there is a 2% probability that a cybercriminal will exist able to steal credit card numbers from your online storefront which will result in $10M in losses to your company. What have you just adamant?

• A take a chance

Question 57)

Which one of the OWASP Top 10 Awarding Security Risks would be occur when an application'southward API exposes financial, healthcare or other PII data?

• Sensitive data exposure

Question 58)

Which three (3) of these are Solution Building Blocks (SBBs)? (Select 3)

• Virus Protection
• Application Firewall
• Spam Filter

Question 59)

A robust cybersecurity defense force includes contributions from 3 areas, human expertise, security analytics and bogus intelligence. Apace analyzing large quantities of unstructured data lends itself best to which of these areas?

• Artificial intelligence

Question 60)

The triad of a security operations centers (SOC) is People, Procedure and Technology. Which part of the triad would network monitoring belong?

• Technology

Question 61)

Which of these is a expert definition for cyber threat hunting?

• The act of proactively and aggressively identifying, intercepting, tracking, investigating and eliminating cyber adversaries as early on as possible in the cyber kill concatenation

Question 62)

There is value brought by each of the IBM i2 Environmental impact assessment utilize cases. Which one of these provides immediate alerting on brand compromises and fraud on the dark web.

• Threat Discovery

.

Question 63)

Which three (3) soft skills are important to have in an arrangement'south incident response team? (Select 3)

• Communication
• Teamwork
• Problem solving and Critical thinking

Question 64)

Implementing stiff endpoint detection and mitigation strategies falls into which phase of the incident response lifecycle?

• Detection & Analysis

Question 65)

Which 3 (three) of these statistics about phishing attacks are existent? (Select 3)

• Around 15 million new phishing sites are created each month
• Phishing accounts for nearly 20% of data breaches
• 30% of phishing messages are opened by their targeted users

Question 66)

Which iii (3) of these control processes are included in the PCI-DSS standard? (Select 3)

• Implement strong admission control measures
• Regularly monitor and test networks
• Maintain an data security policy

Question 67)

Which three (iii) are malware types unremarkably used in PoS attacks to steal credit card information? (Select three)

• Alina
• BlackPOS
• vSkimmer

Question 68)

According to a 2022 Ponemon study, what percent of consumers indicated they would exist willing to pay more than for a product or service from a provider with better security?

• 52%

Question 69)

You become a call from a technician at the "Windows visitor" who tells you lot that they have detected a problem with your system and would similar to help you resolve it. In social club to help, they need yous to go to a web site and download a simple utility that will allow them to fix the settings on your computer. Since you but own an Apple Mac, you are suspicious of this caller and hang up. What would the attack vector accept been if you had downloaded the "simple utility" as asked?

• Remote Desktop Protocol (RDP)

Question 70)

What is an effective fully automated way to prevent malware from entering your system as an email zipper?

• Anti-virus software

 Question 71)

True or False. The large majority of stolen credit card numbers are used quickly past the thief or a fellow member of his/her family unit.

• False

Question 72)

Which three (3) of these are PCI-DSS requirements for any company handling, processing or transmitting credit bill of fare information? (Select 3)

• Restrict access to cardholder data by business organisation need-to-know
• Assign a unique ID to each person with reckoner access
• Restrict physical access to cardholder data

Question 73)

True or Imitation. Communications of a information breach should be handled by a team composed of members of the IR team, legal personnel and public relations.

• Truthful

Question 74)

A Coordinating incident response team model is characterized by which of the following?

• Multiple incident response teams inside an organisation all of whom coordinate their activities only within their state or department

• Multiple incident response teams within an system only 1 with say-so to assure consistent policies and practices are followed across all teams

• This term refers to a structure that assures the incident response team'due south activities are coordinated with senior management and all appropriate departments inside and organization

Question 75)

The cyber hunting team and the SOC analysts are informally referred to equally the ____ and ____ teams, respectively.

• Blueish Red

• Red, Blue

Question 76)

The partnership between security analysts and applied science can be said to be grouped into three domains, human expertise, security analytics and artificial intelligence. The human expertise domain would incorporate which iii (3) of these topics?

• Abstraction
• Dilemmas
• Morals

Question 77)

Solution architectures often contain diagrams like the i below. What does this diagram prove?

<<Solution Compages Data Menses.png>>

• Functional components and data menstruation

Question 78)

Port numbers 1024 through 49151 are known as what?

• Registered Ports

Question 79)

Which layer of the OSI model to bundle sniffers operate on?

• Data Link

Question lxxx)

Truthful or False. Internal attacks from trusted employees represents every bit every bit meaning a threat as external attacks from professional person cyber criminals.

• Truthful

Question 81)

According to the FireEye Mandiant's Security Effectiveness Report 2022, what fraction of security tools are deployed with default settings and thus underperform expectations?

• 80%

Question 82)

Which land had the highest boilerplate cost per breach in 2022 at $8.19M

• United States

Question 83)

Which two (two) of these Python libraries provides useful statistical functions? (Select 2)

• StatsModels

• Scikit-learn

Question 84)

What will impress out when this cake of Python lawmaking is run?

i=1

#i=i+1

#i=i+2

#i=i+3

print(i)

• 1

Question 85)

Which 3 (3) statements about Python variables are true? (Select 3)

• A variable proper noun must start with a letter or the underscore "_" character
• Variables can modify type after they accept been set up
• Variables practice not have to be declared in accelerate of their utilize

Question 86)

PowerShell is a configuration management framework for which operating organization?

• Windows

Question 87)

In digital forensics documenting the chain of custody of show is critical. Which of these should be included in your chain of custody log?

• All of the to a higher place

Question 88)

Forensic analysis should ever exist conducted on a copy of the original data. Which two (2) types of copying are appropriate for getting data from a laptop acquired from a terminated employee, if you doubtable he has deleted incriminating files? (Select two)

• An incremental backup

• A logical backup

Question 89)

Which of the post-obit would be considered an incident precursor?

• An alert from your antivirus software indicating it had detected malware on your system

• An appear threat against your organization by a hactivist group

Question ninety)

If a penetration test calls for you lot to create a diagram of the target network including the identity of hosts and servers as well as a list of open up ports and published services, which tool would be the best fit for this task?

• Nmap

Question 91)

Which type of list is considered all-time for rubber coding practice?

• Whitelist

Question 92)

In reviewing the security logs for a company's headquarters in New York Metropolis, which of these activities should not raise much of a security concern?

• A recently hired information scientist in the Medical Analytics department has repeatedly attempted to access the corporate financial database

• An employee has started logging in from home for an hour or so during the last 2 weeks of each quarter

Question 93)

Data sources such as newspapers, books and web pages are considered which type of data?

• Unstructured data

• Semi-structured data

• Structured information

Question 94)

Which three (3) of these statements about the TCP protocol are Truthful? (Select iii)

• TCP packets are reassembled by the receiving organization in the society in which they were sent

• TCP is more reliable than UDP

• TCP is connection-oriented

Question 95)

In IPv4, how many of the 4 octets are used to define the network portion of the address in a Class B network?

• 2

Question 96)

A small company with 25 computers wishes to connect them to the Internet using a NAT router. How many Public IP addresses will this company need to assure all 25 computers tin can communicate with each other and other systems on the Internet if they implement Port Address Translations?

• 1

Question 97)

Why is symmetric key encryption the most common option of methods to encryptic data at remainder?

• There are far more keys available for use

• Information technology is much faster than asymmetric key encryption

Question 98)

Which of the post-obit statements about hashing is True?

• Hashing uses algorithms that are known as "one-way" functions

Question 99)

Why is hashing not a mutual method used for encrypting data?

• Hashing is a one-way process so the original data cannot be reconstructed from a hash value

Question 100)

Public key encryption incorporating digital signatures ensures which of the following?

• Confidentiality and Integrity

Question 101)

What is the primary authentication protocol used by Microsoft in Agile Directory?

• Kerberos

Question 102)

Granting access to a user account only those privileges necessary to perform its intended functions is known as what?

• The principle of least privileges

Question 103)

What is the most mutual patch remediation frequency for virtually organizations?

• Monthly

• Annually

Question 104)

Island hopping is an assail method commonly used in which scenario?

• Supply Concatenation Infiltration
• Blocking access to a website for all users
• Compromising a corporate VIP
• Trojan Equus caballus attacks

Question 105)

Security training for IT staff is what type of control?

• Virtual

• Operational

• Concrete

Question 106)

Which security concerns follow your workload even after information technology is successfully moved to the cloud?

• All of the above

Question 107)

Which form of Cloud calculating combines both public and individual clouds?

• Hybrid cloud

Question 108)

Which component of the Linux operating system interacts with your computer's hardware?

• The kernel

Question 109)

The encryption and protocols used to prevent unauthorized access to data are examples of which type of access control?

• Technical

Question 110)

In cybersecurity, Actuality is divers as what?

• The property of being 18-carat and verifiable

Question 111)

ITIL is all-time described as what?

• A drove of IT Service Management best practices

Question 112)

Which position is in charge of testing the security and effectiveness of computer information systems?

• Information Security Auditor

Question 113)

A visitor wants to prevent employees from wasting time on social media sites. To accomplish this, a document forbidding utilise of these sites while at piece of work is written and circulated then the firewalls are updated to block admission to Facebook, Twitter and other popular sites. Which two (2) types of security controls has the visitor just implemented? (Select two)

• Administrative

• Technical

Question 114)

An email bulletin that is encrypted, uses a digital signature and carries a hash value would accost which aspects of the CIA Triad?

Confidentiality and Integrity

Question 115)

What would a piece of malicious code that gets installed on a reckoner and reports back to the controller your keystrokes and other information it can gather from your organization be chosen?

• Spyware

Question 116)

Fancy Bears and Anonymous are examples of what?

• Hacking organizations

Question 117)

Select the answer the fills in the blanks in the right lodge.

A weakness in a system is a/an ____. The potential danger associated with this is a/an ____ that becomes a/an ____ when attacked past a bad player.

• vulnerability, threat, exploit

• threat, exposure, risk

• threat histrion, vulnerability, exposure

Question 118)

Implement a filter to remove flooded packets before they reach the host is a countermeasure to which class of assail?

• A Denial of Service (DoS) assault

Question 119)

Trudy intercepts a romantic plain-text message from Alice to her boyfriend Sam. The message upsets Trudy so she forwards information technology to Bob, making information technology look like Alice intended information technology for Bob from the beginning. Which aspect of the CIA Triad has Trudy violated ?

• All of the to a higher place

Question 120)

Which gene contributes almost to the force of an encryption system?

• How many people have admission to your public key

• The length of the encryption fundamental used

• The number of private keys used by the system

Question 121)

What is an advantage asymmetric key encryption has over symmetric key encryption?

• Asymmetric keys can be exchanged more securely than symmetric keys

• Asymmetric primal encryption is harder to break than symmetric central encryption

• Disproportionate key encryption is faster than symmetric key encryption

Question 122)

Which position is responsible for the "upstanding hacking" of an organizations reckoner systems?

• A Penetration Tester

Question 123)

Which three (3) are considered best practices, baselines or frameworks? (Select 3)

• ISO27000 series

• ITIL

• COBIT

Question 124)

What does the "A" in the CIA Triad represent?

• Availability

Question 125)

Which type of access control is based upon the subject's clearance level and the objects classification?

• Hierarchical Access Control (HAC)
• Discretionary Access Control (DAC)
• Mandatory Admission Control (MAC)
• Role Based Admission Control (RBAC)

Question 126)

Windows 10 stores 64-bit applications in which directory?

• \Program Files

Question 127)

To build a virtual calculating surround, where is the hypervisor installed?

• Between the applications and the information sources
• On the cloud's supervisory system
• Between the hardware and operating system
• Between the operating arrangement and applications

Question 128)

An identical electronic mail sent to millions of addresses at random would exist classified equally which blazon of attack?

• A Shark attack

• A Phishing attack

Question 129)

Which statement about drivers running in Windows kernel way is truthful?

• Merely critical processes are permitted to run in kernel manner since in that location is zippo to prevent a

Question 130)

Symmetric central encryption past itself ensures which of the following?

• Confidentiality and Integrity

• Confidentiality simply

• Confidentiality and Availability

Question 131)

Which statement best describes configuring a NAT router to utilize dynamic mapping?

• The arrangement volition need every bit many registered IP addresses as information technology has computers that need Internet access

• Many registered IP addresses are mapped to a single registered IP address using different port numbers

• Unregistered IP addresses are mapped to registered IP addresses as they are needed

• The NAT router uses each computer's IP accost for both internal and external communication

Question 132)

Which accost type does a estimator employ to become a new IP address when it boots up?

• The network'south DHCP server address

Question 133)

What is the primary difference between the IPv4 and IPv6 addressing schema?

• IPv6 is significantly faster than IPv4

• IPv6 is used only for IOT devices

• IPv6 allows for billions of times as many possible IP addresses

Question 134)

Which type of firewall understands which session a packet belongs to and analyzes it accordingly?

• A Next Generation Firewall (NGFW)

Question 135)

An employee calls the Information technology Helpdesk and admits that maybe, merely possibly, the links in the email he clicked on this morning were not from the existent Lottery Committee. What is the first thing you should tell the employee to do?

• Run a Port scan

• Run an antivirus browse

Question 136)

A penetration tester involved in a "Blackness box" set on would be doing what?

• Attempting to penetrate a client's systems as if she were an external hacker with no inside knowled

Question 137)

Which Post Incident activity would be concerned with maintaining the proper chain-of-custody?

• Lessons learned meeting
• Evidence retentiveness
• Documentation review & update
• Utilizing collected information

Question 138)

In digital forensics, which 3 (3) steps are involved in the drove of data? (Select three)

• Develop a program to acquire the data

• Verify the integrity of the information

• Acquire the data

Question 139)

Which three (3) of the following are considered scripting languages? (Select iii)

• Perl

• Bash

• Python

Question 140)

What is the largest number that will be printed during the execution of this Python while loop?

i=0

while (i<ten):

 print(i)

 i=i+one

• nine

Question 141)

Activities performed as a part of security intelligence can be divided into pre-exploit and post-exploit activities. Which ii (2) of these are mail-exploit activities? (Select 2)

• Gather total situational sensation through advanced security analytics

• Perform forensic investigation

Question 142)

In that location are many skilful reasons for maintaining comprehensive backups of disquisitional information. Which aspect of the CIA Triad is most impacted past an organization'south backup practices?

• Availability

• Integrity

• Authorisation

Question 143)

Which phase of DevSecOps would incorporate the activities Internal/External testing, Continuous balls, and Compliance checking?

• Test

• Lawmaking & build

• Operate & monitor

• Plan

Question 144)

Which 1 of the OWASP Top 10 Application Security Risks would exist occur when there are no safeguards against a user being allowed to execute HTML or JavaScript in the user's browser that can hijack sessions.

• Cross-site scripting

Question 145)

SIEM license costs are typically calculated based upon which two (2) factors? (Select 2)

• Flows per minute (FPM)

• Events per 2nd (EPS)

Question 146)

Truthful or False. If you take no meliorate identify to start hunting threats, start with a view of the global threat mural and then drill downwardly to a regional view, industry view and finally a view of the threats specific to your ain organization.

• Truthful

Question 147)

Truthful or False. Cloud-based storage or hosting providers are among the summit sources of tertiary-party breaches

• True

Question 148)

You are looking very hard on the web for the lowest mortgage interest load you tin can find and yous come beyond a charge per unit that is so low it could not perchance be true. You cheque out the site to encounter that the terms are and chop-chop find you are the victim of a ransomware assail. What was the likely attack vector used by the bad actors?

• Phishing

• Malicious Links

• Software Vulnerabilities

Question 149)

Very provocative articles that come up up in news feeds or Google searches are sometimes called "click-allurement". These articles oftentimes tempt you to link to other sites that can be infected with malware. What assault vector is used by these click-bait sites to get you to get to the really bad sites?

• Malicious Links

More New Questions

Question 150)

Which of the following defines a security threat?

• Whatsoever potential danger capable of exploiting a weakness in a system
• The likelihood that the weakness in a system will be exploited
• One instance of a weakness beingness exploited
• A weakness in a organisation that could exist exploited past a bad actor

Question 151)

Suspicious activity, like IP addresses or ports being scanned sequentially, is a sign of which type of attack?

• A mapping attack
• A deprival of service (DoS) attack
• A phishing attack
• An IP spoofing attack

Question 152)

Alice sends a message to Bob that is intercepted by Trudy. Which scenario describes a confidentiality violation?

• Trudy deletes the message without forwarding it
• Trudy cannot read it considering it is encrypted but allows it to exist delivered to Bob in its original form
• Trudy changes the message and so frontwards it on
• Trudy reads the message

Question 153)

Which regulation contains the security rule that requires all covered entities to maintain reasonable and appropriate administrative, technical, and physical safeguards for protecting electronic protected health data (e-PHI)?

• PCI-DSS
• ISO27000 serial
• HIPAA
• GDPR
• NIST 800-53A

Question 154)

A good Endpoint Detection and Response system (EDR) should have which three (3) of these capabilities? (Select three)

• Automatically quarantine noncompliant endpoints
• Manage encryption keys for each endpoint
• Manage thousands of devices at once
• Deploying devices with network configurations

Question 155)

Which argument about encryption is Truthful about data in use.

• Data should always be kept encrypted since mod CPUs are fully capable of operating directly on encrypted data

• It is vulnerable to theft and should be decrypted merely for the briefest possible time while it is being operated on

• Brusk of orchestrating a memory dump from a system crash, in that location is no applied way for malware to get at the data existence processed, so dump logs are your simply real concern

• Information in agile retentiveness registers are non at risk of existence stolen

Question 156)

For added security you decide to protect your network by conducting both a stateless and stateful inspection of incoming packets. How can this exist done?

• This cannot exist washed The network administrator must cull to run a given network segment in either stateful or stateless mode, and then select the respective firewall blazon

• Install a single firewall that is capable of conducting both stateless and stateful inspections

• Install a stateful firewall only These avant-garde devices inspect everything a stateless firewall inspects in addition to state related factors

• You must install 2 firewalls in series, and then all packets pass through the stateless firewall outset and then the stateless firewall

Question 157)

In IPv4, how many of the iv octets are used to define the network portion of the address in a Class A network?

• 2
• i
• 4
• iii

Question 158)

If you have to rely upon metadata to piece of work with the information at hand, you are probably working with which type of information?

• Meta-structured information
• Semi-structured data
• Structured data
• Unstructured data

Question 159)

Which two (2) forms of discovery must exist conducted online? (Select 2)

• Port scanning
• Shoulder surfing
• Social technology
• Package sniffing

Question 160)

Which Incident Response Squad model describes a squad that runs all incident response activities for a company?

• Distributed
• Fundamental
• Coordinating
• Control

Question 161)

Which is the data protection process that prevents a suspicious information asking from beingness completed?

• Data risk analysis
• Data classification
• Data discovery
• Blocking, masking and quarantining

Question 162)

Which class of penetration testing allows the testers fractional noesis of the systems they are trying to penetrate in advance of their assail to streamline costs and focus efforts?

• Blood-red Box Testing
• Grayness Box Testing
• White Box testing
• Black Box Testing

Question 163)

Which type of awarding attack would include User denies performing an operation, assailant exploits an application without trace, and attacker covers her tracks?

• Auditing and logging
• Authentication
• Dominance
• Input validation

Question 164)

True or False. Thorough reconnaissance is an important step in developing an constructive cyber kill chain.

• True
• False

Question 165)

True or False. One of the primary challenges in cyber threat hunting is a lack of useful tools sold by too few vendors.

• True
• Simulated

Question 166)

True or False. A large company has a data breach involving the theft of employee personnel records but no customer data of any kind. Since no external data was involved, the company does not have to written report the breach to law enforcement.

• True
• Fake

Question 167)

You are the CEO of a large tech visitor and have simply received an angry e-mail that looks like information technology came from one of your biggest customers. The email says your company is overbilling the customer and asks that you examine the attached invoice. Yous practice only find it blank, so you reply politely to the sender asking for more details. You never hear back, but a calendar week later your security team tells you that your credentials have been used to access and exfiltrate large amounts of company fiscal data. What kind of assault did you fall victim to?

• As a phishing assail
• Equally a whale attack
• A shark assault
• A fly phishing attack

Question 168)

Which of these statements about the PCI-DSS requirements for any company handling, processing or transmitting credit card information is true?

• Muti-gene authentication is required for all new card holders
• Some grade of mobile device management (MDM) must exist used on all mobile credit card processing devices
• All employees with direct access to cardholder information must be bonded
• Cardholder data must be encrypted if it is sent beyond open up or public networks

Which Incident Response Team model describes a squad that acts equally consulting experts to advise local IR teams?

• Control
• Analogous
• Distributed
• O Cardinal

In a Linux file organisation, which files are contained in the \bin folder?

• All user binary files, their libraries and headers
• Executable files such every bit grep and ping
• Configuration files such every bit fstab and inittab
• Directories such as /home and /usr

If a computer needs to transport a message to a organization that is not part of the local network, where does it send the bulletin?

• To the system's domain proper noun
• To the arrangement's IP address
• The network's DNS server address
• To the organisation's MAC accost
• The network'south default gateway accost
• The network's DHCP server address

Which 3 (3) of these statements about the TCP protocol are True? (Select 3)

• TCP is faster than UDP
• TCP is connection-oriented
• TCP packets are reassembled by the receiving system in the social club in which they were sent
• TCP is more than reliable than UDP

A professor is not allowed to change a student'due south final grade after she submits it without completing a special form to explain the circumstances that necessitated the change. This additional pace supports which aspect of the CIA Triad?

• Authorization
• Integrity
• Confidentiality
• Availability

Which of these is the best definition of a security risk?

• An instance of being exposed to losses
• Any potential danger that is associated with the exploitation of a vulnerability
• A weakness in a organization
• The likelihood of a threat source exploiting a vulnerability

Trudy intercepts a plain text message sent by Alice to Bob, simply in no manner interferes with its delivery. Which aspect of the CIA Triad was violated?

• Confidentiality
• Integrity
• Availability
• All of the in a higher place

What is an advantage symmetric key encryption has over disproportionate key encryption?

• Symmetric fundamental encryption provides better security confronting Homo-in-the-middle attacks than is possible with disproportionate fundamental encryption
• Symmetric key encryption is faster than asymmetric key encryption
• Symmetric keys can be exchanged more securely than asymmetric keys
• Symmetric key encryption is harder to suspension than asymmetric cardinal encryption

Which type of application attack would include network eavesdropping, dictionary attacks and cookie replays?

• Configuration management
• Authentication
• Authority
• Exception management

Why should you always look for common patterns before starting a new security compages design?

• They tin can help identify best practices
• They tin shorten the evolution lifecycle
• Some certificate consummate tested solutions
• All of the higher up

Terminal Update: 09/12/2021

Warning: Jo Answer Green hai wo right hai just

Jo Greenish Nahi hai. Usme se jo ek wrong selection tha usko hata diya hai

PLEASE Await I Volition ADD More than NEW QUETIONS..

Also if y'all have Questions with correct answer  Send me on my Email i volition update on my blog..

niyander111@gmail.com

Cheers...

Source: https://niyander.blogspot.com/2021/03/IBM%20Cybersecurity%20Analyst%20Professional%20Certificate%20Assessment%20Exam%20Answers.html

Posted by: poeinen1981.blogspot.com

Share this post