300-220 무료 덤프문제 온라인 액세스

Selecting deception techniques for a scenario involves:

• A.Placing honeypots within the network
• B.Using misleading comments in the code
• C.Creating fake social media accounts for the IT staff
• D.Sending false positive alerts to attackers

The integration of which products would most enhance analytical capabilities for threat hunting?

• A.Standalone antivirus solutions
• B.Uncoordinated firewall and intrusion prevention systems
• C.Disconnected SIEM and endpoint detection and response (EDR) platforms
• D.SIEM, EDR, and threat intelligence platforms

What is a recommended mitigation strategy to block Command and Control (C2) traffic?

• A.Implementing stringent egress filtering
• B.Reducing the use of encryption
• C.Allowing all outbound traffic
• D.Decreasing firewall security levels

Identifying memory-resident attacks often requires the use of:

• A.Antivirus software
• B.Disk-based forensics tools
• C.Network sniffers
• D.Memory analysis tools

The MITRE ATT&CK framework is primarily used for modeling:

• A.Software development lifecycles
• B.Physical security measures
• C.Business processes
• D.Threats using tactics, techniques, and procedures