Cysa ports - Study guides, Class notes & Summaries

FTP port(s) - Answer TCP 20, 21 Telnet port(s) - Answer TCP 23 TFTP port(s) - Answer UDP 69 POP3 port(s) - Answer TCP 110 IMAP port(s) - Answer TCP 143 LDAP port(s) - Answer TCP and UDP 389 SQL server port(s) - Answer TCP 1433 Oracle database port(s) - Answer TCP 1521 H.323 call signaling port(s) - Answer TCP 1720 PPTP port(s) - Answer TCP 1723 Most common Network Access Control (NAC) standard - Answer 802.1x Defense Deception - Answer Attempts to lure attackers ...

CYSA, Top Exam Questions and answers, 100% Accurate. RATED A+ The IT team reports the EDR software that is installed on laptops is using a large amount of resources. Which of the following changes should a security analyst make to the EDR to BEST improve performance without compromising security? A. Quarantine the infected systems. B. Disable on-access scanning. C. Whitelist known-good applications. D. Sandbox unsigned applications. - -Whitelist known-good applications A security ana...

CYSA EXAM TEST 2023 QUESTION AND CORRECT ANSWER Which of the following is the software development process by which function, usability, and scenarios are tested against a known set of base requirements? A. Security regression testing B. Code review C. User acceptance testing D. Stress testing - ANSWER C. User acceptance testing A security analyst is revising a company's MFA policy to prohibit the use of short message service (SMS) tokens. The Chief Information Officer has questio...

CYSA EXAM 2023LATEST UPDATE VERIFIED SOLUTIONS What are the three key objectives of information security? - ANSWER Confidentiality, integrity, and availability Risk exists at the intersection of _______ and _________. - ANSWER Threats and vulnerabilities. What is the overall risk rating for a risk that has medium likelihood and high impact? - ANSWER High What type of system controls access to a network based on criteria such as time of day, location, device type, and system - AN...

CYSA EXAM TEST SOLUTION LATEST UPDATE 2023 Describe one advantage and one disadvantage of using the -T0 switch when performing an Nmap scan. - ANSWER This sets an extremely high delay between probes, which may help to evade detection systems but will take a very long time to return results. What is the principal challenge in scanning UDP ports? - ANSWER UDP does not send ACK messages so the scan must use timeouts to interpret the port state. This makes scanning a wide range of UDP ...

CYSA Exam 2 QUESTION AND CORRECT ANSWERS Ty is reviewing the scan report for a Windows system joined to his organization's domain and finds the vulnerability shown here. What should be Ty's most significant concern related to this vulnerability? Window shows sections for 3 administrator account's password does not expire and threat, and options for first detected, last detected, vendor reference, user modified, et cetera. The presence of this vulnerability indicates that an at...

COMPTIA CYSA- Chapter 1, Top Questions and answers, 100% Accurate. Graded A+ Vulnerability - -weakness in a device, system, application, or process that might allow an attack to take place Threat - -outside force that may exploit a vulnerability Risk - -combination of a threat and a corresponding vulnerability Risk= threat x vulnerability NIST SP 800-53 - -risk assessment process Risk Assessment Steps - -1. prepare and assessment 2. conduct assessment 3. communicate results ...

CompTIA Cybersecurity Analyst (CySA+) Assessment Test, Questions and answers, 100% Accurate. VERIFIED. After running an nmap scan of a system, you receive scan data that indicates the following three ports are open:22/TCP443/TCP1521/TCP What services commonly run on these ports? A.SMTP, NetBIOS, MySQL B.SSH, Microsoft DS, WINS C.SSH, HTTPS, Oracle D.FTP, HTTPS, MS-SQL - -C. These three TCP ports are associated with SSH (22), HTTPS (443), and Oracle databases (1521). Other ports mentio...

CYSA Exam 2 QUESTION AND CORRECT ANSWERS Ty is reviewing the scan report for a Windows system joined to his organization's domain and finds the vulnerability shown here. What should be Ty's most significant concern related to this vulnerability? Window shows sections for 3 administrator account's password does not expire and threat, and options for first detected, last detected, vendor reference, user modified, et cetera. The presence of this vulnerability indicates that an at...

CYSA, Top Exam Questions and answers, 100% Accurate. Graded A+ CVSS: Low - -Under 4.0 CVSS: Medium - -More than 4.0,but less than 6.0 CVSS: High - -More than 6.0, but less than 10.0 CVSS: Critical - -1.0 NIST Threat Classification - -External/Removable media Attrition (Brute force) Web Email Impersonation Improper usage Loss or theft of equipment Unknown NIST Functional Impact - -None - No effect on org's ability to provide services to all users Low - Minimal effe...