CS0-003 試験問題 331
An employee downloads a freeware program to change the desktop to the classic look of legacy Windows. Shortly after the employee installs the program, a high volume of random DNS queries begin to originate from the system. An investigation on the system reveals the following:
Add-MpPreference - ExclusionPath '%Program Files%\ksyconfig'
Which of the following is possibly occurring?
Add-MpPreference - ExclusionPath '%Program Files%\ksyconfig'
Which of the following is possibly occurring?
CS0-003 試験問題 332
An organization has noticed large amounts of data are being sent out of its network. An analyst is identifying the cause of the data exfiltration.
INSTRUCTIONS
Select the command that generated the output in tabs 1 and 2.
Review the output text in all tabs and identify the file responsible for the malicious behavior.
If at any time you would like to bring back the initial state of the simulation, please click the Reset All button.
INSTRUCTIONS
Select the command that generated the output in tabs 1 and 2.
Review the output text in all tabs and identify the file responsible for the malicious behavior.
If at any time you would like to bring back the initial state of the simulation, please click the Reset All button.
CS0-003 試験問題 333
会社所有・管理のノートパソコンにマルウェアが感染している疑いがあります。会社は集中セキュリティログを導入しています。以下のログソースのうち、マルウェア感染を確認できるのはどれですか?
CS0-003 試験問題 334
インシデント発生中、ネットワークセグメント内のサーバー群で、ランサムウェア感染の疑いのある痕跡がいくつか見つかりました。次に取るべき対策は以下のどれですか?
CS0-003 試験問題 335
Which of the following most accurately describes the Cyber Kill Chain methodology?