Logical Operations CFR-210 CFR Exam Practice Test Instant Access

Question 1

A forensics analyst is analyzing an executable and thinks it may have some text of interest hidden within it. Which of the following tools can the analyst use to assist in validating the suspicion?

AIsof

Bcat command

Chex editor

Dmore

Answer : C

Question 2

While performing standard maintenance on a UNIX server, a system administrator notices a set of large files with .tar .gz file extensions in the /tmp folder. The system administrator reports this to a security analyst. Performing further research, the analyst has found the .tar .gz files contain information normally housed on one of the bank's data servers. Given this scenario, which of the following is MOST likely occurring?

AA malicious actor, having breached the system, is staging collected data for exfiltration.

BHaving nearly exhausted the capacity of the home directory, a user is moving files to make room.

CAn error on the .hosts file has resultedin the data being backed up to the wrong server.

DOne of the newly hired system administrators has inadvertently backed up data to the wrong server.

Answer : B

Question 3

A logfile generated from a Windows server was moved to a Linux system for further analysis. A system administrator is now making edits to the file with vi and notices the file contains numerous instances of Ctrl-M (^M) characters. Which of the following command line tools is the administrator MOST likely to use to remove these characters from the logfile? (Choose two.)

Atr

Bcut

Ccat

Dunix2dos

Eawk

Answer : A, C

Question 4

A zero-day vulnerability is discovered on a company's network. The security analyst conducts a log review, schedules an immediate vulnerability scan, and quarantines the infected system, but cannot determine the root cause of the vulnerability. Which of the following is a source of information that can be used to identify the cause of the vulnerability?

Awww.virustotal.com

BSecurity RSS feeds

CSecurity software websites

DGovernment websites

Answer : C

Question 5

Which of the following techniques allows probing firewall rule sets and finding entry points into a targeted system or network?

ADistributed checksum clearinghouse

BFirewall fingerprinting

CNetwork enumeration

DPacket crafting

Answer : D

Question 6

A security analyst for a financial services firm is monitoring blogs and reads about a zero-day vulnerability being exploited by a little-known group of hackers. The analyst wishes to independently validate and corroborate the blog's posting. Whichof the following sources of information will provide the MOST credible supporting threat intelligence in this situation?

ASimilar cybersecurity blogs

BThreat intelligence sharing groups

CComputer emergency response team press release

DInternet searches on zero-day exploits

Answer : C

Question 7

A high-level government official uses anonymous bank accounts to transfer a requested amount of funds to individuals in another country. These individuals are known for defacing government websites and exfiltrating sensitive data. Which of the following BEST describes the involved threat actors?

AState-sponsored hackers

BGray hat hackers

CHacktivists

DCyber terrorists

Answer : D

Logical Operations Certified CyberSec First Responder CFR-210 CFR Exam Practice Test