최신 CFR-410 무료덤프 - CertNexus CyberSec First Responder

문제1

Senior management has stated that antivirus software must be installed on all employee workstations. Which of the following does this statement BEST describe?

A. Policy

B. Standard

C. Procedure

D. Guideline

정답: A

문제2

A computer forensics analyst suspects that some of the pictures recovered from the suspect's hard drive may contain metadata pertinent to the criminal investigation. Which of the following tools is BEST suited to retrieving any available metadata?

A. Redline

B. Autopsy

C. ExifTool

D. Xplico

E. Encase

정답: C

설명: (DumpTOP 회원만 볼 수 있음)

문제3

Which of the following regulations is most applicable to a public utility provider operating in the United States?

A. FISMA

B. HIPAA

C. NERC

D. GDPR

정답: C

설명: (DumpTOP 회원만 볼 수 있음)

문제4

Which two answer options are the BEST reasons to conduct post-incident reviews after an incident occurs in an organization? (Choose two.)

A. To help prevent an incident recurrence.

B. To help identify event detection information.

C. To help leverage automated scanning tools and ad hoc tests

D. To help identify lessons learned and follow-up action.

정답: A,D

설명: (DumpTOP 회원만 볼 수 있음)

문제5

An incident responder has collected network capture logs in a text file, separated by five or more data fields.
Which of the following is the BEST command to use if the responder would like to print the file (to terminal/ screen) in numerical order?

A. sort -n

B. cat | tac

C. less

D. more

정답: A

문제6

An automatic vulnerability scan has been performed. Which is the next step of the vulnerability assessment process?

A. Assessing identified exposures

B. Generating reports

C. Documenting exceptions

D. Hardening the infrastructure

정답: B

문제7

Which of the following methods are used by attackers to find new ransomware victims? (Choose two.)

A. Password guessing

B. Brute force attack

C. Phishing

D. Web crawling

E. Distributed denial of service (DDoS) attack

정답: B,C

문제8

Which of the following are components of Security Content Automation Protocol (SCAP)?

A. CVE, CVSS, and OSVDB

B. CWE, CWSS, and OVAL

C. CVM, NVD, and OSVDB

D. CVE, CVSS, and OVAL

정답: D

문제9

A digital forensics investigation requires analysis of a compromised system's physical memory. Which of the following tools should the forensics analyst use to complete this task?

A. FTK

B. CAINE

C. Autopsy

D. Wire shark

E. Volatility

정답: E

설명: (DumpTOP 회원만 볼 수 있음)

문제10

Which two answer options correctly highlight the difference between static and dynamic binary analysis techniques? (Choose two.)

A. Static analysis examines the binary without executing it. while dynamic analysis executes the program and observes its behavior.

B. Dynamic analysis tells everything the program can do. and static analysis tells exactly what the program does when it is executed in a given environment and with a particular input.

C. Static analysis tells everything the program can do. and dynamic analysis tells exactly what the program does when it is executed in a given environment and with a particular input.

D. Dynamic analysis examines the binary without executing it, while static analysis executes the program and observes its behavior.

정답: A,C

설명: (DumpTOP 회원만 볼 수 있음)

최신 CFR-410 무료덤프 - CertNexus CyberSec First Responder

우리와 연락하기

유용한 링크

최신 업데이트