100-160 Exam Questions

Why is it necessary to update firmware to the latest version?

How do threat actors launch ransomware attacks on organizations?

You are planning to work from home. Your company requires that you connect to the company network through a VPN. Which three critical functions do VPNs provide to remote workers? (...

A threat actor sets up a rogue access point (AP) at a local cafe. The rogue AP captures traffic and then forwards the traffic to the cafe AP. Which type of attack does this scenari...

What is the main purpose of a disaster recovery plan as compared to a business continuity plan?

A restaurant installs a second wireless router that only employees can use. Which statement describes how to securely configure the new router?

You need to transfer configuration files to a router across an unsecured network. Which protocol should you use to encrypt the files in transit?

Your company is creating a BYOD policy to allow employees to join their personal smartphones to the company network. Which three requirements are commonly included in a BYOD policy...

You notice that a new CVE has been shared to an email group that you belong to. What should you do first with the CVE?

Which encryption type is commonly used to secure WiFi networks?

How does sandboxing help with the analysis of malware?

Which network security technology passively monitors network traffic and compares the captured packet stream with known malicious signatures?

Your supervisor tells you that you will participate in a CVSS assessment. What will you be doing?

The company web server collects information through a form. The form is accessed by using port 80. The form content is transferred to an encrypted database for storage. You are inv...

You work for a hospital that stores electronic protected health information (ePHI) in an online portal. Authorized employees can use their mobile devices to access patient ePHI. Yo...

You need to design your company's password policy to adhere to the National Institute of Standards and Technology (NIST) guidelines for user password security. What is the minimum...

You need a software solution that performs the following tasks: - Compiles network data - Logs information from many sources - Provides orchestration in the form of case management...

You are collecting data after a suspected intrusion on the local LAN. You need to capture incoming IP packets to a file for an investigator to analyze. Which two tools should you u...

What should an incident response team do immediately after detecting an incident?

Which vulnerabilities can a risk assessment reveal? (Choose two)

What are components of a comprehensive risk management process? (Choose two)

Which metric is used in risk assessment to evaluate the severity of a vulnerability?

What is the main role of a Host-Based Intrusion Prevention System (HIPS)?

Which of the following are examples of secure network protocols? (Choose two)

What tools can help identify network vulnerabilities? (Choose two)

Which protocol is commonly used for secure data transmission over the internet?

How does a honeypot enhance network security?

Which data type is protected through hard disk encryption?

Your supervisor suspects that someone is attempting to gain access to a Windows computer by guessing user account IDs and passwords. The supervisor asks you to use the Windows Even...

You are going to perform a penetration test on a company LAN. As part of your preparation, you access the company's websites, view webpage source code, and run internet searches to...

Your manager asks you to review the output of some vulnerability scans and report anything that may require escalation. Which two findings should you report for further investigati...

A client cannot connect to the corporate web server. You discover a large number of half-open TCP connections to the server. What should you do?

Which two basic metrics should be taken into consideration when assigning a severity to a vulnerability during an assessment? (Choose two.)

Which Windows app is a command-line interface that includes a sophisticated scripting language used to automate Windows tasks?

You are reviewing the Application log on a Windows computer. You see an event with an error- level message as shown. What can you determine about the application that generated the...

Which security measure can prevent unauthorized devices from automatically connecting to a corporate network through unused switch ports?

An administrator wants to ensure that any files downloaded from the internet are automatically scanned for malicious code before execution. Which security control should be impleme...

Which step should be performed immediately after identifying a critical vulnerability affecting internet-facing systems?

A SOC analyst notices repeated failed login attempts from a foreign IP address followed by a successful login to a privileged account. What is the most appropriate next step?

Which wireless security protocol provides the strongest protection for a home or small business network?

During an incident response, the security team needs to isolate a compromised server from the rest of the network but still allow forensic analysis. Which action should they take?

What activities should occur during the preparation phase of incident handling? (Choose two)

Which type of attack exploits human vulnerabilities to gain unauthorized access?

Which macOS security feature encrypts the entire macOS volume?

You are reviewing your company's disaster recovery plan. Which two daily data backup actions should the plan include? (Choose two.)

Which two passwords follow strong password policy guidelines? (Choose two.)

Your home network seems to have slowed down considerably. You look at the home router GUI and notice that an unknown host is attached to the network. What should you do to prevent...

What should you create to prevent spoofing of the internal network?

A remote worker is visiting a branch office to attend face-to-face meetings. The worker tries to associate their company laptop with the branch wireless access point (WAP) but is u...

Which security assessment of IT systems verifies that PII data is available, accurate, confidential, and accessible only by authorized users?