Logical Operations CFR-210 Certified CyberSec First Responder CFR Exam Practice Test

Page: 1 / 14
Total 90 questions
Question 1

An analyst would like to search for a specific text string at the beginning of a line that begins with four capital alphabetic characters. Which of the following search operators should be used?



Answer : B


Question 2

An alert on user account activity outside of normal business hours returns Windows even IDs 540 and 4624. In which of the following locations will these events be found?



Answer : D


Question 3

An incident responder suspects that a host behind a firewall is infected with malware. Which of the following should the responder use to find the IP address of the infected machine?



Answer : C


Question 4

A SOC analyst has been tasked with checking all files in every employee home directory for any mention of a new product code named PitViper. Which of the following commands will return all requested data?



Answer : A


Question 5

An attacker has sent malicious macro-enabled Office files. Which of the following regular expressions will return a list of macro-enabled files?



Answer : B


Question 6

An administrator wants to block Java exploits that were not detected by the organization's antivirus product. Which of the following mitigation methods should an incident responder perform? (Choose two.)



Answer : C, E


Question 7

Network engineering has reported low bandwidth during working hours. The incident response team is currently investigating several anomalous activities that may be related. Which of the following is the MOST appropriate method to further investigate this problem?



Answer : C


Page:    1 / 14   
Total 90 questions