Question 1

Identify the CTI lifecycle step involving sorting, organizing, and filtering for false and redundant information

Options :

A : Analysis

B :

Planning and Direction

C : Collection

D : Processing

Answer: D

Question 2

The network operations center (NOC) improve blocking by

Options :

A : Secure web gateways (SWG)

B : Intrusion detection and intrusion prevention systems (IDS/IPS)

C :

Firewalls, next-generation firewalls (NGFW), application firewalls

D : All of these

Answer: D

Question 3

What characterize APT

Options :

A : may require rewriting malicious code to avoid detection

B : uses sophisticated evasion techniques

C : All of these

D : maintain access to the targeted network without being discovered

Answer: C

Question 4

What is not an export format for MISP

Options :

A : CSV

B : plain text

C :

JSON

D : None of these

Answer: D

Question 5

What types of packets are sent to the victim of a session-hijacking attack to cause them to close their end of the connection

Options :

A : FIN or RST

B : SYN and ACK

C : SYN or ACK

D : FIN and ACK

Answer: A