210-250 Exam Questions
198 real 210-250 exam questions with expert-verified answers and explanations. Page 2 of 4.
- Question #51Cybersecurity Fundamentals
Which definition of the virtual address space for a Windows process is true?
virtual memoryWindows processmemory managementoperating systems - Question #52Security Principles
Which information security property is supported by encryption?
encryptionconfidentialitycryptographyinformation security - Question #53Security Technologies
Which situation indicates application-level white listing?
application whitelistingendpoint securityexecutable controlaccess control - Question #54Threats and Vulnerabilities
If a web server accepts input from the user and passes it to a bash shell, to which attack method is it vulnerable?
command injectionweb vulnerabilitiesinput validationbash shell - Question #55Security Technologies
Which encryption algorithm is the strongest?
AESencryption algorithmssymmetric encryptioncryptography - Question #56Cybersecurity Fundamentals
Which protocol maps IP network addresses to MAC hardware addresses so that IP packets can be sent across networks?
ARPnetwork protocolsMAC addressIP addressing - Question #57Security Technologies
Which statement about digitally signing a document is true?
digital signaturesPKIprivate keyhash function - Question #58Security Technologies
For which reason can HTTPS traffic make security monitoring difficult?
HTTPSTLS encryptionsecurity monitoringSSL/TLS - Question #59Cybersecurity Fundamentals
Which directory is commonly used on Linux systems to store log files, including syslog and apache access logs?
Linuxlog files/var/logsyslog - Question #62Cybersecurity Fundamentals
Which technology allows a large number of private IP addresses to be represented by a smaller number of public IP addresses?
NATIP addressingprivate IPpublic IP - Question #63Cybersecurity Fundamentals
Which NTP command configures the local device as an NTP reference clock source?
NTPnetwork time protocolNTP configurationreference clock - Question #64Threats and Vulnerabilities
Which three options are types of Layer 2 network attack? (Choose three.)
Layer 2 attacksARP spoofingVLAN hoppingnetwork attacks - Question #65Cybersecurity Fundamentals
If a router has four interfaces and each interface is connected to four switches, how many broadcast domains are present on the router?
broadcast domainsrouternetwork segmentationsubnetting - Question #66Cybersecurity Fundamentals
Where does routing occur within the DoD TCP/IP reference model?
DoD TCP/IP modelroutinginternet layernetwork models - Question #67Security Technologies
Which two features must a next generation firewall include? (Choose two.)
NGFWnext-generation firewallapplication visibilityintrusion detection - Question #68Security Principles
Which term represents a weakness in a system that could lead to the system being compromised?
vulnerabilitythreatrisksecurity terminology - Question #69Cybersecurity Fundamentals
Which definition of Windows Registry is true?
Windows Registryoperating systemsystem configuration - Question #70Security Technologies
Which definition of the IIS Log Parser tool is true?
IIS Log Parserlog analysisSQL querieslog files - Question #72Security Technologies
Which of the following are Cisco cloud security solutions?
Cisco cloud securityOpenDNSCloudLockcloud security - Question #73Cybersecurity Fundamentals
What is a trunk link used for?
trunk linkVLAN802.1Qnetwork switching - Question #74Cybersecurity Fundamentals
At which OSI layer does a router typically operate?
OSI modelrouternetwork layerLayer 3 - Question #75Security Technologies
Cisco pxGrid has a unified framework with an open API designed in a hub-and-spoke architecture. pxGrid is used to enable the sharing of contextual-based information from which devi...
pxGridCisco ISEpolicy sharingnetwork access control - Question #76Cybersecurity Fundamentals
What are the advantages of a full-duplex transmission mode compared to half-duplex mode? (Select all that apply.)
full-duplexhalf-duplexcollision domainnetwork transmission - Question #77Security Technologies
Stateful and traditional firewalls can analyze packets and judge them against a set of predetermined rules called access control lists (ACLs). They inspect which of the following e...
stateful firewallACLpacket inspectionfirewall - Question #78Security Principles
In which case should an employee return his laptop to the organization?
asset managementasset return policysecurity policyendpoint security - Question #79Security Principles
Which of the following are metrics that can measure the effectiveness of a runbook?
runbookincident responseMTTRMTBF - Question #80Security Principles
Which of the following access control models use security labels to make access decisions?
mandatory access controlMACsecurity labelsaccess control models - Question #81Security Principles
Where are configuration records stored?
CMDBconfiguration managementasset managementIT service management - Question #82Security Technologies
Which of the following is true about heuristic-based algorithms?
heuristic detectionIDS/IPS tuningmalware detectionnetwork security - Question #83Cybersecurity Fundamentals
How many broadcast domains are created if three hosts are connected to a Layer 2 switch in full- duplex mode?
broadcast domainLayer 2 switchnetwork fundamentalsfull-duplex - Question #84Security Principles
What is one of the advantages of the mandatory access control (MAC) model?
mandatory access controlMAC modelaccess controlinformation security - Question #85Security Principles
According to the attribute-based access control (ABAC) model, what is the subject location considered?
ABACattribute-based access controlenvironmental attributesaccess control - Question #86Security Technologies
What type of algorithm uses the same key to encryp and decrypt data?
symmetric encryptioncryptographyencryption keyalgorithm types - Question #87Security Technologies
Which actions can a promiscuous IPS take to mitigate an attack?
IPSpromiscuous modeattack mitigationintrusion prevention - Question #88Security Technologies
Which Statement about personal firewalls is true?
personal firewallhost-based securityprobing protectionfirewall limitations - Question #89Security Technologies
Which three statements about host-based IPS are true? (Choose three)
HIPShost-based IPSencrypted file inspectionbehavior-based detection - Question #90Threats and Vulnerabilities
An attacker installs a rogue switch that sends superior BPDUs on your network. What is a possible result of this activity?
STP attackBPDUroot bridge hijackrogue switch - Question #91Security Technologies
The FMC can share HTML, Pdf and csv data type that relate to a specific event type which event type:
FMCFirepowerintrusion eventsSIEM reporting - Question #92Cybersecurity Fundamentals
For which purpose can Windows management instrumentation be used?
WMIWindows Management Instrumentationremote managementsystem administration - Question #93Security Principles
Which international standard is for general risk management, including the principles and guideline for managing risk?
ISO 31000risk managementsecurity standardscompliance - Question #94Threats and Vulnerabilities
Which statement about the difference between a denial-of-service attack and a distributed denial of service attack is true?
DoSDDoSdistributed attackattack comparison - Question #95Threats and Vulnerabilities
You discover that a foreign government hacked one of the defense contractors in your country and stole intellectual property. In this situation, which option is considered the thre...
threat agentthreat actorAPTthreat terminology - Question #96Threats and Vulnerabilities
After a large influx of network traffic to externally facing devices, you begin investigating what appear to be a denial of service attack. When you review packets capture data, yo...
port scanningSYN scannetwork reconnaissanceattack identification - Question #97Security Technologies
Which definition of common event format is terms of a security information and event management solution is true?
CEFcommon event formatSIEMlog management - Question #98Cybersecurity Fundamentals
Which definition of a Linux daemon is true?
Linux daemonprocess managementinit processoperating systems - Question #99Security Principles
Which term describes reasonable effort that must be made to obtain relevant information to facilitate appropriate courses of action?
due diligencesecurity governancerisk managementcompliance - Question #100Threats and Vulnerabilities
According to the common vulnerability scoring system, which term is associated with scoring multiple vulnerabilities that are exploit in the course of a single attack?
CVSSvulnerability chainingvulnerability scoringexploit chain - Question #101Cybersecurity Fundamentals
Which Linux terminal command can be used to display all the processes?
Linux commandsps commandprocess managementsystem administration - Question #102Security Principles
Which statement about an attack surface is true?
attack surfaceapplication securitythreat surfacesecurity concepts - Question #103Security Technologies
You get an alert on your desktop computer showing that an attack was successful on the host but up on investigation you see that occurred duration the attack. Which reason is true?
HIDSIDS vs IPShost-based detectionintrusion detection