1)The network administrator notices that there is a high volume of data being transferred between two networks in an organization but is unable to identify the host involve at the currently do not have access to those networks or the routers connecting them. Which network protocol telemetry would provide the data required for them to identify the host? IPFIX NTP SNMP Syslog 2)Hacker is preparing to conduct a spear phishing attack and is currently writing the text of the email that will be send to organization CEO. Which step of the cyber kill chain is this attack in? Reconnaissance Veponization Delivery Exploitation Actions on objective 3)When using a simple search function on a website an attacker notices that certain inputs causes an error message to be returned by a web server. What is the possible OWASE top ten vulnerabilities may be present in this application? Broken access control Cross-site scripting Injection Sensitive data exposure Using components with known vulnerabilities
1)The network administrator notices that there is a high volume of data being transferred between two networks in an organization but is unable to identify the host involve at the currently do not have access to those networks or the routers connecting them. Which network protocol telemetry would provide the data required for them to identify the host?
- IPFIX
- NTP
- SNMP
- Syslog
2)Hacker is preparing to conduct a spear phishing attack and is currently writing the text of the email that will be send to organization CEO. Which step of the cyber kill chain is this attack in?
- Reconnaissance
- Veponization
- Delivery
- Exploitation
- Actions on objective
3)When using a simple search function on a website an attacker notices that certain inputs causes an error message to be returned by a web server. What is the possible OWASE top ten vulnerabilities may be present in this application?
- Broken access control
- Cross-site scripting
- Injection
- Sensitive data exposure
- Using components with known vulnerabilities
4)The security team discovers that there is an unused FTP server running on one of the organization’s computer even though the organization has decided to discontinue all use of FTP. Which aspect of security management are most likely to discover the existence of this FTP server?
- Policy management
- Security auditing
- Security education
- Security operations
5)Which protocol network for telemetry would be useful for monitoring the organization’s web server including both the number of web request and the volume of data incoming/outgoing?
- IPFIX
- NTP
- SNMP
- Syslog
Step by step
Solved in 3 steps