Exam (elaborations)

200-201 Dumps - Pass with Latest Cisco 200-201 Exam Dumps

5 views 0 purchase

Course
200-201

Institution
200-201

OfficialDumps provides 100% latest 200-201 dumps to pass your Cisco 200-201 exam in first attempt. All 200-201 exam questions are verified by Cisco certified experts. Don't waste Your time, Just Visit and Get Up-to-Date Actual 200-201 Exam Questions and Pass Your Exam in 1st try.

[Show more]

Preview 6 out of 7 pages

View example

Uploaded on June 15, 2021
Number of pages 7
Written in 2020/2021
Type Exam (elaborations)
Contains Questions & answers

200 201 dumps
200 201 exam dumps
200 201 exam questions
200 201 pdf dumps
200 201 dumps pdf

Institution
200-201
Education
200-201
Course
200-201

Free

Download Add to wishlist

100% satisfaction guarantee
Immediately available after payment
Both online and in PDF
No strings attached

Cisco
200-201 Exam
Understanding Cisco Cybersecurity Operations Fundamentals Exam

Thank you for Downloading
(200-201 Dumps Demo)

Try Full Updated Product Here:

https://officialdumps.com/updated/cisco/200-201-exam-dumps/

, Cisco
200-201 Exam
Understanding Cisco Cybersecurity Operations Fundamentals
Questions & Answers
Demo

,Questions & Answers PDF Page 2

Version: 5.0

Question: 1

While viewing packet capture data, an analyst sees that one IP is sending and receiving traffic for
multiple devices by modifying the IP header.
Which technology makes this behavior possible?

A. encapsulation
B. TOR
C. tunneling
D. NAT

Answer: D

Question: 2

When communicating via TLS, the client initiates the handshake to the server and the server
responds back with its certificate for identification.
Which information is available on the server certificate?

A. server name, trusted subordinate CA, and private key
B. trusted subordinate CA, public key, and cipher suites
C. trusted CA name, cipher suites, and private key
D. server name, trusted CA, and public key

Answer: D

Question: 3

A security engineer has a video of a suspect entering a data center that was captured on the same
day that files in the same data center were transferred to a competitor.
Which type of evidence is this?

A. best evidence
B. prima facie evidence
C. indirect evidence
D. physical evidence

Answer: C

,Questions & Answers PDF Page 3

Question: 4

Which two elements of the incident response process are stated in NIST Special Publication 800-61
r2? (Choose two.)

A. detection and analysis
B. post-incident activity
C. vulnerability management
D. risk assessment
E. vulnerability scoring

Answer: A, B

Reference: https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-61r2.pdf
Question: 5

Which utility blocks a host portscan?

A. HIDS
B. sandboxing
C. host-based firewall
D. antimalware

Answer: C

Question: 6

Which event is user interaction?

A. gaining root access
B. executing remote code
C. reading and writing file permission
D. opening a malicious file

Answer: D

Question: 7

An intruder attempted malicious activity and exchanged emails with a user and received corporate
information, including email distribution lists. The intruder asked the user to engage with a link in an
email. When the fink launched, it infected machines and the intruder was able to access the
corporate network.
Which testing method did the intruder use?

A. social engineering
B. eavesdropping

,Questions & Answers PDF Page 4

C. piggybacking
D. tailgating

Answer: A

Question: 8

Refer to the exhibit.

What information is depicted?

A. IIS data
B. NetFlow data
C. network discovery event
D. IPS event data

Answer: B

Question: 9

Which type of evidence supports a theory or an assumption that results from initial evidence?

A. probabilistic
B. indirect
C. best
D. corroborative

Answer: D

Question: 10

Which two elements are assets in the role of attribution in an investigation? (Choose two.)

A. context
B. session
C. laptop
D. firewall logs
E. threat actor

Answer: AE

, Questions & Answers PDF Page 5

Question: 11

Which regular expression matches "color" and "colour"?

A. colo?ur
B. col[0−8]+our
C. colou?r
D. col[0−9]+our

Answer: C

Question: 12

A user received a malicious attachment but did not run it.
Which category classifies the intrusion?

A. weaponization
B. reconnaissance
C. installation
D. delivery

Answer: D

The benefits of buying summaries with Stuvia:

Guaranteed quality through customer reviews

Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.

Quick and easy check-out

You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.

Focus on what matters

Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!

Frequently asked questions

What do I get when I buy this document?

You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.

Satisfaction guarantee: how does it work?

Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.

Who am I buying these notes from?

Stuvia is a marketplace, so you are not buying this document from us, but from seller hannahcornish. Stuvia facilitates payment to the seller.

Will I be stuck with a subscription?

No, you only buy these notes for $0.00. You're not tied to anything after your purchase.

Can Stuvia be trusted?

4.6 stars on Google & Trustpilot (+1000 reviews)

75632 documents were sold in the last 30 days

Founded in 2010, the go-to place to buy study notes for 14 years now

Start selling

Popular Universities in the United States

Popular books

Find notes and summaries for these qualifications