CS0-002 무료 덤프문제 온라인 액세스

A manufacturing company has joined the information sharing and analysis center for its sector. As a benefit, the company will receive structured loC data contributed by other members. Which of the following best describes the utility of this data?

• A.Other members will automatically adjust their security postures lo defend the manufacturing company's processes.
• B.Other members will have visibility into Instances o' positive loC identification within me manufacturing company's corporate network.
• C.The manufacturing company will have access to relevant malware samples from all other manufacturing sector members.
• D.The manufacturing company can automatically generate security configurations for all of Its Infrastructure.

A consultant evaluating multiple threat intelligence leads to assess potential risks for a client. Which of the following is the BEST approach for the consultant to consider when modeling the client's attack surface?

• A.Discuss potential tools the client can purchase lo reduce the livelihood of an attack.
• B.Look at attacks against similar industry peers and assess the probability of the same attacks happening.
• C.Meet with the senior management team to determine if funding is available for recommended solutions.
• D.Ask for external scans from industry peers, look at the open ports, and compare Information with the client.

A security analyst notices the following proxy log entries:

Which of the following is the user attempting to do based on the log entries?

• A.Use a DoS attack on external hosts.
• B.Exfiltrate data.
• C.Relay email.
• D.Scan the network.

Company A is m the process of merging with Company B As part of the merger, connectivity between the ERP systems must be established so portent financial information can be shared between the two entitles. Which of the following will establish a more automated approach to secure data transfers between the two entities?

• A.Set up a PKI between Company A and Company B and Intermediate shared certificates between the two entities
• B.Set up a VPN between Company A and Company B granting access only lo the ERPs within the connection
• C.Set up an FTP server that both companies can access and export the required financial data to a folder.
• D.Create static NATs on each entity's firewalls that map lo the ERP systems and use native ERP authentication to allow access.

A security analyst found an old version of OpenSSH running on a DMZ server and determined the following piece of code could have led to a command execution through an integer overflow;

Which of the following controls must be in place to prevent this vulnerability?

• A.Use built-in functions from libraries to check and handle long numbers properly.
• B.Sanitize user inputs, avoiding small numbers that cannot be handled in the memory.
• C.Implement float numbers instead of integers to prevent integer overflows.
• D.Convert all integer numbers in strings to handle the memory buffer correctly.