300-215 試験問題を無料オンラインアクセス

What is the goal of an incident response plan?

• A.to identify critical systems and resources in an organization
• B.to determine security weaknesses and recommend solutions
• C.to contain an attack and prevent it from spreading
• D.to ensure systems are in place to prevent an attack

Which type of record enables forensics analysts to identify fileless malware on Windows machines?

• A.network records
• B.file event records
• C.IIS logs
• D.PowerShell event logs

Refer to the exhibit.

A security analyst notices unusual connections while monitoring traffic. What is the attack vector, and which action should be taken to prevent this type of event?

• A.SYN flooding; block malicious packets
• B.MAC flooding; assign static entries
• C.ARP spoofing; configure port security
• D.DNS spoofing; encrypt communication protocols

A malware outbreak revealed that a firewall was misconfigured, allowing external access to the SharePoint server. What should the security team do next?

• A.Harden the SharePoint server
• B.Disable external IP communications on all firewalls
• C.Review and update all firewall rules and the network security policy
• D.Scan for and fix vulnerabilities on the firewall and server

Refer to the exhibit.

Which encoding technique is represented by this HEX string?

• A.Unicode
• B.Charcode
• C.Base64
• D.Binary