Question 1

Refer to the exhibit.

Which asset has the highest risk value?

Options :

A : servers

B : website

C : payment process

D : secretary workstation

Answer: C

Question 2

Refer to the exhibit.

What results from this script?

Options :

A : Seeds for existing domains are checked

B : A search is conducted for additional seeds

C : Domains are compared to seed rules

D : A list of domains as seeds is blocked

Answer: B

Question 3

Refer to the exhibit.

An engineer received multiple reports from employees unable to log into systems with the error: The Group Policy Client service failed to logon -- Access is denied. Through further analysis, the engineer discovered several unexpected modifications to system settings. Which type of breach is occurring?

Options :

A : malware break

B : data theft

C : elevation of privileges

D : denial-of-service

Answer: C

Question 4

An organization suffered a security breach in which the attacker exploited a Netlogon Remote Protocol vulnerability for further privilege escalation. Which two actions should the incident response team take to

prevent this type of attack from reoccurring? (Choose two.)

Options :

A : Implement a patch management process.

B : Scan the company server files for known viruses.

C : Apply existing patches to the company servers.

D : Automate antivirus scans of the company servers.

E : Define roles and responsibilities in the incident response playbook.

Answer: A,D

Question 5

Refer to the exhibit.

Two types of clients are accessing the front ends and the core database that manages transactions, access control, and atomicity. What is the threat model for the SQL database?

Options :

A : An attacker can initiate a DoS attack.

B : An attacker can read or change data.

C : An attacker can transfer data to an external server.

D : An attacker can modify the access logs.

Answer: A

Free 350-201 Mock Exam – Practice Online Confidently

Buying Options: