312-85 試験問題を無料オンラインアクセス

John, a professional hacker, is trying to perform APT attack on the target organization network. He gains access to a single system of a target organization and tries to obtain administrative login credentials to gain further access to the systems in the network using various techniques.
What phase of the advanced persistent threat lifecycle is John currently in?

• A.Expansion
• B.Initial intrusion
• C.Search and exfiltration
• D.Persistence

Jim works as a security analyst in a large multinational company. Recently, a group of hackers penetrated into their organizational network and used a data staging technique to collect sensitive data. They collected all sorts of sensitive data about the employees and customers, business tactics of the organization, financial information, network infrastructure information and so on.
What should Jim do to detect the data staging before the hackers exfiltrate from the network?

• A.Jim should identify the web shell running in the network by analyzing server access, error logs, suspicious strings indicating encoding, user agent strings, and so on.
• B.Jim should monitor network traffic for malicious file transfers, file integrity monitoring, and event logs.
• C.Jim should identify the attack at an initial stage by checking the content of the user agent field.
• D.Jim should analyze malicious DNS requests, DNS payload, unspecified domains, and destination of DNS requests.

Tyrion, a professional hacker, is targeting an organization to steal confidential information. He wants to perform website footprinting to obtain the following information, which is hidden in the web page header.
Connection status and content type
Accept-ranges and last-modified information
X-powered-by information
Web server in use and its version
Which of the following tools should the Tyrion use to view header content?

• A.Vanguard enforcer
• B.AutoShun
• C.Hydra
• D.Burp suite

Jack is a professional hacker who wants to perform remote exploitation on the target system of an organization. He established a two-way communication channel between the victim's system and his server.
He used encryption techniques to hide the presence of a communication channel on a victim's system and further applied privilege escalation techniques to exploit the system.
What phase of the cyber kill chain methodology is Jack currently in?

• A.Delivery
• B.Command and Control
• C.Reconnaissance
• D.Weaponization

John, a professional hacker, is trying to perform APT attack on the target organization network. He gains access to a single system of a target organization and tries to obtain administrative login credentials to gain further access to the systems in the network using various techniques.
What phase of the advanced persistent threat lifecycle is John currently in?

• A.Expansion
• B.Initial intrusion
• C.Search and exfiltration
• D.Persistence