Question 1

Andrews and Sons Corp. has decided to share threat information among sharing partners. Garry, a

threat analyst, working in Andrews and Sons Corp., has asked to follow a trust model necessary to

establish trust between sharing partners. In the trust model used by him, the first organization makes

use of a body of evidence in a second organization, and the level of trust between two organizations

depends on the degree and quality of evidence provided by the first organization.

Which of the following types of trust model is used by Garry to establish the trust?

Options :

A : Mediated trust

B : Mandated trust

C : Direct historical trust

D : Validated trust

Answer: D

Question 2

The last step in developing a strategic roadmap is

Options :

A : train staff

B : create a central knowledge base

C : automate workflows

D : develop a hunt mission capability

Answer: D

Question 3

Which of the following behaviors does not help to identify adversary

Options :

A : DNS Tunneling

B :

None of these

C : Command line process execution, and the abuse of command line execution

D : Uncategorized Proxy Events

Answer: B

Question 4

Daniel is a professional hacker whose aim is to attack a system to steal data and money for profit. He performs hacking to obtain confidential data such as social security numbers, personally identifiable information (PII) of an employee, and credit card information. After obtaining confidential data, he further sells the information on the black market to make money. Daniel comes under which of the following types of threat actor.

Options :

A : Industrial spies

B : State-sponsored hackers

C : Insider threat

D : Organized hackers

Answer: D

Question 5

What types of packets are sent to the victim of a session-hijacking attack to cause them to close their end of the connection

Options :

A : FIN or RST

B : SYN and ACK

C : SYN or ACK

D : FIN and ACK

Answer: A