600-199 Securing Cisco Networks with Threat Detection and Analysis (Exam 2)

600-199 Securing Cisco Networks with Threat Detection and Analysis (Exam 2)

created by Fisher BRink (@fisher) at Feb. 8, 2016
  • Which three symptoms are best used to detect a TCP SYN flood attack? (Choose three.)

  • Which two statements about the IPv4 TTL field are true? (Choose two.)

  • What are four steps to manage incident response handling? (Choose four.)

  • What does the acronym "CSIRT" stand for?

  • Which publication from the ISO covers security incident response?

  • As a part of incident response, which action should be performed?

  • Which three tools should be used for incident response? (Choose three.)

  • Which four tools are used during an incident to collect data? (Choose four.)

  • What is the most effective way to save the data on a system for later forensic use?

  • In a network security policy, which procedure should be documented ahead of time t...

  • Which data is the most useful to determine if a network attack was occurring from ...

  • Which step should be taken first when a server on a network is compromised?

  • Which data from previous network attacks should be used to recommend architectural...

  • Which three post-mortem steps are critical to help prevent a network attack from r...

  • Refer to the exhibit.Which two personal administrators should be involved to inves...

  • Which protocol is typically considered critical for LAN operation?

  • Which two measures would you recommend to reduce the likelihood of a successfully ...

  • Which attack exploits incorrect boundary checking in network software?

  • Refer to the exhibit.Which DNS Query Types pertains to email?

  • A server administrator tells you that the server network is potentially under atta...

Be the first to review
Login and Review
  • info
    Quiz Info
  • date_range
    Feb. 8, 2016, 3:42 a.m.
    help_outline
    20 questions
    dvr
    0 completed
    remove_red_eye
    2 views
    people
    0 takers
    folder

  • 600-199 Securing Cisco Networks with Threat Detection and Analysis (Exam 2) QR code

Ratings

star_borderstar_borderstar_borderstar_borderstar_border
ratings