Cisco 200-201 CBROPS Exam Practice Test Instant Access

Question 1

Refer to the exhibit.

What is the outcome of the command?

ATCP rule that detects TCP packets with the SYN flag in an external FTP server

BTCP rule that detects TCP packets with a SYN flag in the internal network

CTCP rule that detects TCP packets with a ACK flag in the internal network

DTCP rule that detects TCP packets with the ACK flag in an external FTP server

Answer : B

Question 2

Refer to the exhibit.

A company's user HTTP connection to a malicious site was blocked according to configured policy What is the source technology used for this measure'?

Anetwork application control

Bfirewall

CIPS

Dweb proxy

Answer : B

Question 3

An engineer must configure network systems to detect command-and-control communications by decrypting ingress and egress perimeter traffic and allowing network security devices to detect malicious outbound communications. Which technology must be used to accomplish this task?

Astatic IP addresses

Bsignatures

Cdigital certificates

Dcipher suite

Answer : C

Question 4

Which action matches the weaponization step of the Cyber Kill Chain model?

AScan a host to find open ports and vulnerabilities

BConstruct the appropriate malware and deliver it to the victim.

CTest and construct the appropriate malware to launch the attack

DResearch data on a specific vulnerability

Answer : B

Question 5

Which technique is a low-bandwidth attack?

Asocial engineering

Bsession hijacking

Cevasion

Dphishing

Answer : C

Question 6

Which type of data must an engineer capture to analyze payload and header information?

Aframe check sequence

Balert data

Cfull packet

Dsession logs

Answer : C

Question 7

An engineer received an alert affecting the degraded performance of a critical server Analysis showed a heavy CPU and memory load. What is the next step the engineer should take to investigate this resource usage?

ARun 'ps -ef to understand which processes are taking a high amount of resources

BRun 'ps -u' to find out who executed additional processes that caused a high load on a server

CRun 'ps -m' to capture the existing state of daemons and map the required processes to find the gap

DRun 'ps -d' to decrease the priority state of high-load processes to avoid resource exhaustion

Answer : A

Cisco 200-201 Understanding Cisco Cybersecurity Operations Fundamentals CBROPS Exam Practice Test