• Home
  • Articles
  • Dependable 350-201 Exam Dumps to Become Cisco Certified [Q74-Q94]

Dependable 350-201 Exam Dumps to Become Cisco Certified [Q74-Q94]

Share

Dependable 350-201 Exam Dumps to Become Cisco Certified

Get Ready with 350-201 Exam Dumps (2023)

NEW QUESTION # 74
Which command does an engineer use to set read/write/execute access on a folder for everyone who reaches the resource?

  • A. chmod 777
  • B. chmod 666
  • C. chmod 775
  • D. chmod 774

Answer: A

Explanation:
Explanation/Reference: https://www.pluralsight.com/blog/it-ops/linux-file-permissions


NEW QUESTION # 75
An engineer wants to review the packet overviews of SNORT alerts. When printing the SNORT alerts, all the packet headers are included, and the file is too large to utilize. Which action is needed to correct this problem?

  • A. Modify the alert rule to "output alert_syslog: output header"
  • B. Modify the output module rule to "output alert_fast: output filename"
  • C. Modify the alert rule to "output alert_syslog: output log"
  • D. Modify the output module rule to "output alert_quick: output filename"

Answer: C

Explanation:
Reference:
%2F20201231%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20201231T141156Z&X-Amz- Expires=172800&X-Amz-SignedHeaders=host&X-Amz- Signature=e122ab6eb1659e13b3bc6bb2451ce693c0298b76c1962c3743924bc5fd83d382


NEW QUESTION # 76
An employee abused PowerShell commands and script interpreters, which lead to an indicator of compromise (IOC) trigger. The IOC event shows that a known malicious file has been executed, and there is an increased likelihood of a breach. Which indicator generated this IOC event?

  • A. Crossrider.ioc
  • B. ExecutedMalware.ioc
  • C. W32 AccesschkUtility.ioc
  • D. ConnectToSuspiciousDomain.ioc

Answer: C


NEW QUESTION # 77
Drag and drop the threat from the left onto the scenario that introduces the threat on the right. Not all options are used.

Answer:

Explanation:


NEW QUESTION # 78
A security engineer discovers that a spreadsheet containing confidential information for nine of their employees was fraudulently posted on a competitor's website. The spreadsheet contains names, salaries, and social security numbers. What is the next step the engineer should take in this investigation?

  • A. Determine if there is internal knowledge of this incident.
  • B. Check incoming and outgoing communications to identify spoofed emails.
  • C. Engage the legal department to explore action against the competitor that posted the spreadsheet.
  • D. Disconnect the network from Internet access to stop the phishing threats and regain control.

Answer: C


NEW QUESTION # 79
Refer to the exhibit.

Where does it signify that a page will be stopped from loading when a scripting attack is detected?

  • A. x-frame-options
  • B. x-xss-protection
  • C. x-test-debug
  • D. x-content-type-options

Answer: B


NEW QUESTION # 80
Refer to the exhibit.

An organization is using an internal application for printing documents that requires a separate registration on the website. The application allows format-free user creation, and users must match these required conditions to comply with the company's user creation policy:
minimum length: 3
usernames can only use letters, numbers, dots, and underscores
usernames cannot begin with a number
The application administrator has to manually change and track these daily to ensure compliance. An engineer is tasked to implement a script to automate the process according to the company user creation policy. The engineer implemented this piece of code within the application, but users are still able to create format-free usernames. Which change is needed to apply the restrictions?

  • A. modify code to force the restrictions, def force_user(username, minlen)
  • B. automate the restrictions def automate_user(username, minlen)
  • C. validate the restrictions, def validate_user(username, minlen)
  • D. modify code to return error on restrictions def return false_user(username, minlen)

Answer: B


NEW QUESTION # 81
An engineer received multiple reports from users trying to access a company website and instead of landing on the website, they are redirected to a malicious website that asks them to fill in sensitive personal dat a. Which type of attack is occurring?

  • A. teardrop attack
  • B. session hijacking attack
  • C. Domain Name System poisoning
  • D. Address Resolution Protocol poisoning

Answer: C


NEW QUESTION # 82
An engineer received an alert of a zero-day vulnerability affecting desktop phones through which an attacker sends a crafted packet to a device, resets the credentials, makes the device unavailable, and allows a default administrator account login. Which step should an engineer take after receiving this alert?

  • A. Determine company usage of the affected products
  • B. Search for a patch to install from the vendor
  • C. Initiate a triage meeting to acknowledge the vulnerability and its potential impact
  • D. Implement restrictions within the VoIP VLANS

Answer: B


NEW QUESTION # 83
A company recently started accepting credit card payments in their local warehouses and is undergoing a PCI audit. Based on business requirements, the company needs to store sensitive authentication data for 45 days. How must data be stored for compliance?

  • A. by issuers and issuer processors if there is a legitimate reason
  • B. by entities that issue the payment cards or that perform support issuing services
  • C. post-authorization by non-issuing entities if the data is encrypted and securely stored
  • D. post-authorization by non-issuing entities if there is a documented business justification

Answer: C


NEW QUESTION # 84
Drag and drop the actions below the image onto the boxes in the image for the actions that should be taken during this playbook step. Not all options are used.

Answer:

Explanation:


NEW QUESTION # 85
An engineer returned to work and realized that payments that were received over the weekend were sent to the wrong recipient. The engineer discovered that the SaaS tool that processes these payments was down over the weekend. Which step should the engineer take first?

  • A. Utilize the SaaS tool team to gather more information on the potential breach
  • B. Organize a meeting to discuss the services that may be affected
  • C. Contact the incident response team to inform them of a potential breach
  • D. Request that the purchasing department creates and sends the payments manually

Answer: A


NEW QUESTION # 86
The incident response team was notified of detected malware. The team identified the infected hosts, removed the malware, restored the functionality and data of infected systems, and planned a company meeting to improve the incident handling capability. Which step was missed according to the NIST incident handling guide?

  • A. Install IPS software
  • B. Contain the malware
  • C. Perform vulnerability assessment
  • D. Determine the escalation path

Answer: C

Explanation:
Explanation/Reference:


NEW QUESTION # 87

Refer to the exhibit. What results from this script?

  • A. A list of domains as seeds is blocked
  • B. A search is conducted for additional seeds
  • C. Domains are compared to seed rules
  • D. Seeds for existing domains are checked

Answer: B


NEW QUESTION # 88
An audit is assessing a small business that is selling automotive parts and diagnostic services. Due to increased customer demands, the company recently started to accept credit card payments and acquired a POS terminal. Which compliance regulations must the audit apply to the company?

  • A. FISMA
  • B. PCI DSS
  • C. HIPAA
  • D. COBIT

Answer: B


NEW QUESTION # 89
An engineer has created a bash script to automate a complicated process. During script execution, this error occurs: permission denied. Which command must be added to execute this script?

  • A. source ex.sh
  • B. chmod +x ex.sh
  • C. chroot ex.sh
  • D. sh ex.sh

Answer: B

Explanation:
Explanation/Reference: https://www.redhat.com/sysadmin/exit-codes-demystified


NEW QUESTION # 90
Refer to the exhibit.

Where are the browser page rendering permissions displayed?

  • A. x-frame-options
  • B. x-content-type-options
  • C. x-xss-protection
  • D. x-test-debug

Answer: B


NEW QUESTION # 91
How does Wireshark decrypt TLS network traffic?

  • A. by defining a user-specified decode-as
  • B. with a key log file using per-session secrets
  • C. using an RSA public key
  • D. by observing DH key exchange

Answer: B

Explanation:
Explanation/Reference: https://wiki.wireshark.org/TLS


NEW QUESTION # 92
An engineer receives a report that indicates a possible incident of a malicious insider sending company information to outside parties. What is the first action the engineer must take to determine whether an incident has occurred?

  • A. Inform the product security incident response team to investigate further
  • B. Analyze environmental threats and causes
  • C. Analyze the precursors and indicators
  • D. Inform the computer security incident response team to investigate further

Answer: C


NEW QUESTION # 93
A security incident affected an organization's critical business services, and the customer-side web API became unresponsive and crashed. An investigation revealed a spike of API call requests and a high number of inactive sessions during the incident. Which two recommendations should the engineers make to prevent similar incidents in the future? (Choose two.)

  • A. Decrease simultaneous API responses.
  • B. Automate server-side error reporting for customers.
  • C. Determine API rate-limiting requirements.
  • D. Implement API key maintenance.
  • E. Configure shorter timeout periods.

Answer: B,C


NEW QUESTION # 94
......

Download Exam 350-201 Practice Test Questions with 100% Verified Answers: https://www.actualpdf.com/350-201_exam-dumps.html

Realistic 350-201 Dumps are Available for Instant Access: https://drive.google.com/open?id=1NojB2qcikLDiy2q8CMKcG4G-dXvg1Wco

Related Articles

more
Cisco 350-201 Certification Practice Exam