CompTIA CySA+ Cybersecurity Analyst Certification Passport (Exam CS0-002) by Bobby E. Rogers
				
							 
							
								
							
							
							Author:Bobby E. Rogers [Bobby E. Rogers]
							
							
							
							Language: eng
							
							
							
							Format: epub
							
							
							
																				
							
							
							
							
							
							Publisher: McGraw-Hill
							
							
							
							Published: 2020-12-31T16:00:00+00:00
							
							
							
							
							
							
3.1 QUESTIONS
1. Rico is a cybersecurity analyst who is trying to perform analysis on unusual traffic patterns. The traffic does not match any known patterns and is not within the normal baseline of the organizationâs network traffic. Which of the following types of analysis would be best suited for Rico to use to match this abnormal traffic with characteristics of known attack methods?
A. Signature-based analysis
B. behavioral-based analysis
C. Heuristic analysis
D. Trend analysis
2. Barney is a cybersecurity analyst who is attempting to configure network devices to prevent any potential malware from broadcasting outside the organizationâs network to an Internet command-and-control server. When he first analyzes a potential piece of malware, he sees that it is configured to send messages to a specific domain, which he promptly blocks. Several weeks later, he detects that same piece of malware on the network, as well as network traffic that indicates it is messaging a malicious server on the Internet. Which the following techniques did the malware most likely used to achieve this?
A. User and entity behavior analytics
B. Domain generation algorithm
C. Sender Policy Framework
D. Embedded links
3. You are a cybersecurity analyst who is looking at a large volume of network traffic data, collected over a period of two years, in an effort to determine why bandwidth usage increased over that time period. What type of analysis are you conducting?
A. Historical analysis
B. Traffic analysis
C. User and entity behavior analytics
D. Heuristics analysis
4. You are a cybersecurity analyst who has been tasked to review logs from over 200 individual hosts that make up your network. After two weeks of trying and failing to visit every single host to review their logs, you decide to come up with a better solution. Which of the following is the best solution for examining large numbers of logs in a central location?
A. Syslog server
B. SIEM system
C. Web application firewall
D. Proxy server
5. Amie is upgrading the organizationâs e-mail server and wants to include several security technologies in the implementation. She is looking at a specific technology that provides a method for recipients to verify messages by publishing the organizationâs public key to DNS records, which can be queried and verified by e-mail recipients. Which of the following technologies is Amie considering?
A. Digital signatures
B. Domain-based Message Authentication, Reporting, and Conformance (DMARC)
C. Sender Policy Framework (SPF)
D. Domain Keys Identified Mail (DKIM)
Download
This site does not store any files on its server. We only index and link to content provided by other sites. Please contact the content providers to delete copyright contents if any and email us, we'll remove relevant links or contents immediately.
CISA - Certified Information Systems Auditor Study Guide by Hemang Doshi(1393)
Implementing Microsoft Azure Architect Technologies: AZ-303 Exam Prep and Beyond by Brett Hargreaves and Sjoukje Zaal(1291)
Microsoft Python Certification Exam 98-281 & PCEP âPreparation Guide: Introduction To Programming Using Python, PCEP â Certified Entry Level Python Programmer by Raman Archith & Raman Dhyanashri & Raman R & Publications Raman(849)
CCNP Data Center Application Centric Infrastructure 300-620 DCACI Official Cert Guide by Ammar Ahmadi(717)
CompTIA Security+: SY0-601 Certification Guide Second Edition by Ian Neil(681)
CompTIA CySA+ Cybersecurity Analyst Certification All-in-One Exam Guide (Exam CS0-002) by Brent Chapman(666)
CompTIA PenTest+ Certification For Dummies by Glen E. Clarke(613)
Exam Ref AZ-500 Microsoft Azure Security Technologies by Yuri Diogenes & Orin Thomas(544)
CompTIA Security+ Practice Tests by David Seidl(525)
AZ-303 : Microsoft Azure Architect Technologies : Volume : 01 by Specialist IP(523)
Casp+ Comptia Advanced Security Practitioner Certification All-in-one Exam Guide, Exam Cas-003 (9781260441345) by Lane Nicholas; Conklin Arthur; White Gregory B.; Williams Dwayne(483)
CompTIA PenTest+ Certification All-in-One Exam Guide (Exam PT0-001) by Raymond Nutting(474)
Official Google Cloud Certified Associate Cloud Engineer Study Guide by Dan Sullivan(462)
AWS Certified Solutions Architect Study Guide Associate (SAA-C01) Exam Second Edition by Ben Piper & David Clinton(431)
AWS Certified SysOps Administrator Practice Tests 2021: AWS Exam-Difficulty Practice Questions with Answers & detailed Explanations by Davis Neal(412)
Cisco Certified DevNet Associate DEVASC 200-901 Official Cert Guide by Chris Jackson & Adrian Iliesiu & Ashutosh Malegaonkar & Jason Gooley(396)
Redis Certified Developer: Exam Practice Tests by Scutaru Cristian(390)
AWS Certified SysOps Administrator Study Guide by Sara Perrott & Brett McLaughlin(384)
Exam Ref MS-500 Microsoft 365 Security Administration by Ed Fisher & Nate Chamberlain(382)
