Nest 0 Cart
Nest Account
Popular Exams
All Categories...
Nest
Nest 0
Contact
Log In / Sign Up
Copyright 2024 © store. All rights reserved.
Home Cisco® 300-215

Cisco® 300-215 Exam Practice Questions (P. 2)

  • Full Access (59 questions)
  • Six months of Premium Access
  • Access to one million comments
  • Seamless ChatGPT Integration
  • Ability to download PDF files
  • Anki Flashcard files for revision
  • No Captcha & No AdSense
  • Advanced Exam Configuration
Get Contributor Access
Question #6
Which scripts will search a log file for the IP address of 192.168.100.100 and create an output file named parsed_host.log while printing results to the console?
A.

B.

C.

D.


Correct Answer:
A

Question #7
What is the transmogrify anti-forensics technique?
  1. A
    hiding a section of a malicious file in unused areas of a file
  2. B
    sending malicious files over a public network by encapsulation
  3. C
    concealing malicious files in ordinary or unsuspecting places
  4. D
    changing the file header of a malicious file to another file type

Correct Answer:
D
Reference:
https://www.csoonline.com/article/2122329/the-rise-of-anti-forensics.html#:~:text=Transmogrify%20is%20similarly%20wise%20to,a%20file%20from%2C%20say%
2C%20
.

Question #8
What is the steganography anti-forensics technique?
  1. A
    hiding a section of a malicious file in unused areas of a file
  2. B
    changing the file header of a malicious file to another file type
  3. C
    sending malicious files over a public network by encapsulation
  4. D
    concealing malicious files in ordinary or unsuspecting places

Correct Answer:
A
https://blog.eccouncil.org/6-anti-forensic-techniques-that-every-cyber-investigator-dreads/

Question #9
A security team receives reports of multiple files causing suspicious activity on users' workstations. The file attempted to access highly confidential information in a centralized file server. Which two actions should be taken by a security analyst to evaluate the file in a sandbox? (Choose two.)
  1. A
    Inspect registry entries
  2. B
    Inspect processes.
  3. C
    Inspect file hash.
  4. D
    Inspect file type.
  5. E
    Inspect PE header.

Correct Answer:
BC
Reference:
https://medium.com/@Flying_glasses/top-5-ways-to-detect-malicious-file-manually-d02744f7c43a

Question #10

Refer to the exhibit. An engineer is analyzing a .LNK (shortcut) file recently received as an email attachment and blocked by email security as suspicious. What is the next step an engineer should take?
  1. A
    Delete the suspicious email with the attachment as the file is a shortcut extension and does not represent any threat.
  2. B
    Upload the file to a virus checking engine to compare with well-known viruses as the file is a virus disguised as a legitimate extension.
  3. C
    Quarantine the file within the endpoint antivirus solution as the file is a ransomware which will encrypt the documents of a victim.
  4. D
    Open the file in a sandbox environment for further behavioral analysis as the file contains a malicious script that runs on execution.

Correct Answer:
D

Previous Questions Next Questions

All Pages