최신 312-39 무료덤프 - EC-COUNCIL Certified SOC Analyst (CSA)

문제1

Which of the following data source will a SOC Analyst use to monitor connections to the insecure ports?

A. Netstat Data

B. DNS Data

C. IIS Data

D. DHCP Data

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제2

Which of the following process refers to the discarding of the packets at the routing level without informing the source that the data did not reach its intended recipient?

A. Rate Limiting

B. Black Hole Filtering

C. Load Balancing

D. Drop Requests

정답: B

설명: (DumpTOP 회원만 볼 수 있음)

문제3

The threat intelligence, which will help you, understand adversary intent and make informed decision to ensure appropriate security in alignment with risk.
What kind of threat intelligence described above?

A. Tactical Threat Intelligence

B. Functional Threat Intelligence

C. Strategic Threat Intelligence

D. Operational Threat Intelligence

정답: C

설명: (DumpTOP 회원만 볼 수 있음)

문제4

Which encoding replaces unusual ASCII characters with "%" followed by the character's two-digit ASCII code expressed in hexadecimal?

A. URL Encoding

B. UTF Encoding

C. Base64 Encoding

D. Unicode Encoding

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제5

What is the correct sequence of SOC Workflow?

A. Collect, Respond, Validate, Ingest, Report, Document

B. Collect, Ingest, Document, Validate, Report, Respond

C. Collect, Ingest, Validate, Document, Report, Respond

D. Collect, Ingest, Validate, Report, Respond, Document

정답: D

설명: (DumpTOP 회원만 볼 수 있음)

문제6

Which of the following command is used to enable logging in iptables?

A. $ iptables -A OUTPUT -j LOG

B. $ iptables -A INPUT -j LOG

C. $ iptables -B OUTPUT -j LOG

D. $ iptables -B INPUT -j LOG

정답: B

설명: (DumpTOP 회원만 볼 수 있음)

문제7

Which of the following attack inundates DHCP servers with fake DHCP requests to exhaust all available IP addresses?

A. DHCP Starvation Attacks

B. DHCP Port Stealing

C. DHCP Spoofing Attack

D. DHCP Cache Poisoning

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제8

The Syslog message severity levels are labelled from level 0 to level 7.
What does level 0 indicate?

A. Alert

B. Debugging

C. Emergency

D. Notification

정답: C

설명: (DumpTOP 회원만 볼 수 있음)

문제9

An attacker exploits the logic validation mechanisms of an e-commerce website. He successfully purchases a product worth $100 for $10 by modifying the URL exchanged between the client and the server.
Original
URL: http://www.buyonline.com/product.aspx?profile=12
&debit=100
Modified URL: http://www.buyonline.com/product.aspx?profile=12
&debit=10
Identify the attack depicted in the above scenario.

A. SQL Injection Attack

B. Denial-of-Service Attack

C. Parameter Tampering Attack

D. Session Fixation Attack

정답: C

설명: (DumpTOP 회원만 볼 수 있음)

문제10

Which of the following formula is used to calculate the EPS of the organization?

A. EPS = average number of correlated events / time in seconds

B. EPS = number of normalized events / time in seconds

C. EPS = number of security events / time in seconds

D. EPS = number of correlated events / time in seconds

정답: D

설명: (DumpTOP 회원만 볼 수 있음)

최신 312-39 무료덤프 - EC-COUNCIL Certified SOC Analyst (CSA)

우리와 연락하기

유용한 링크

최신 업데이트