May 2024

Article

03 May

Posted at 01:05h in Practice Test Questions by

Preparing for your next security certification exam? After trying your hand at this practice test question, join the FREE CertMike Study Group for the CISSP, Security+, CySA+, PenTest+, CISM+ or SSCP certification to receive new questions each week. You’ll also receive free access to my customized study strategies. Which one of the following protocols is an open, industry standard protocol for the exchange of network flow records? A. IPFlow B. Netflow v5 C.   Netflow v9 D.   IPFIX Correct Answer: D The commonly used NetFlow standard is a proprietary Cisco standard, making both NetFlow v5 and NetFlow v9 incorrect answers. IPFlow is a NetFlow collector and not a standard for exchanging flow records. The Internet Protocol Flow Information Export (IPFIX) standard is an open alternative made available by the Internet Engineering Task Force (IETF), making it our correct answer.   Interested in more practice test questions?   Get a copy of my official CertMike Practice Test books for the Security+ exam, CISSP exam, SSCP exam, or CySA+ exam and practice with hundreds of questions designed just like the real test! ...

03 May

Posted at 00:50h in Practice Test Questions by

Preparing for your next security certification exam? After trying your hand at this practice test question, join the FREE CertMike Study Group for the CISSP, Security+, CySA+, PenTest+, CISM+ or SSCP certification to receive new questions each week. You’ll also receive free access to my customized study strategies. In which stage of the incident response process should incident responders work to isolate affected systems from the rest of the network? A. Preparation B. Detection and Analysis C. Containment, Eradication and Recovery D. Post-Incident Activity Correct Answer: C Isolating affected systems is one of the first steps toward containing an incident. It occurs after the incident is detected during the containment, eradication, and recovery phase of incident response. The Preparation phase and the detection and analysis phase occur before this step. Post-incident activity does not occur until after this step.   Interested in more practice test questions?   Get a copy of my official CertMike Practice Test books for the Security+ exam, CISSP exam, SSCP exam, or CySA+ exam and practice with hundreds of questions designed just like the real test! ...

02 May

Posted at 02:02h in Practice Test Questions by

Preparing for your next security certification exam? After trying your hand at this practice test question, join the FREE CertMike Study Group for the CISSP, Security+, CySA+, PenTest+, CISM+ or SSCP certification to receive new questions each week. You’ll also receive free access to my customized study strategies. Wyatt would like to retrieve a web page and store it in a file using a command that works at the Linux command line. What command can he use to meet this need? A. TCPdump B. FTP C. Curl D. Wireshark Correct Answer: C The FTP command is used to retrieve files from an FTP server, not a remote web URL. Not what we are looking for here. The tcpdump and Wireshark utilities are used to capture network traffic. Making both tcpdump and wireshark incorrect answers. The curl command is used to retrieve files from remote URLs and may be used to store those files on the local system. This is our correct answer.   Interested in more practice test questions?   Get a copy of my official CertMike Practice Test books for the Security+ exam, CISSP exam, SSCP exam, or CySA+ exam and practice with hundreds of questions designed just like the real test! ...

In Archive