Question 1

What is vulnerability management?

Options :

A : A security practice focused on clarifying and narrowing intrusion points.

B : A security practice of performing actions rather than acknowledging the threats.

C : A process to identify and remediate existing weaknesses.

D : A process to recover from service interruptions and restore business-critical applications

Answer: C

Question 2

What is the difference between deep packet inspection and stateful inspection?

Options :

A : Stateful inspection verifies contents at Layer 4. and deep packet inspection verifies connection at Layer 7.

B : Stateful inspection is more secure than deep packet inspection on Layer 7.

C : Deep packet inspection is more secure than stateful inspection on Layer 4.

D : Deep packet inspection allows visibility on Layer 7, and stateful inspection allows visibility on Layer 4.

Answer: D

Question 3

A user received a malicious email attachment named "DS045-report1122345.exe" and executed it. In which step of the Cyber Kill Chain is this event?

Options :

A : reconnaissance

B : delivery

C : weaponization

D : installation

Answer: B

Question 4

What is threat hunting?

Options :

A : Managing a vulnerability assessment report to mitigate potential threats.

B : Focusing on proactively detecting possible signs of intrusion and compromise.

C : Pursuing competitors and adversaries to infiltrate their system to acquire intelligence data.

D : Attempting to deliberately disrupt servers by altering their availability

Answer: A

Question 5

What does an attacker use to determine which network ports are listening on a potential target device?

Options :

A : man-in-the-middle

B : port scanning

C : SQL injection

D : ping sweep

Answer: B