210-250 Practice Questions
198 real 210-250 exam questions with expert-verified answers and explanations. Page 3 of 4.
- Question #104
Which process continues to be recorded in the process table after it has ended and the status is returned to the parent?
- Question #105
For which kind of attack does an attacker use known information in encrypted files to break the encryption scheme for the rest of
- Question #106
In which technology is network level encrypted not natively incorporated?
- Question #107
Which purpose of command and control for network aware malware is true?
- Question #108
Which action is an attacker taking when they attempt to gain root access on the victims system?
- Question #109
Which vulnerability is an example of Shellshock?
- Question #110
In which format are NetFlow records stored?
- Question #111
A zombie process occurs when which of the following happens?
- Question #112
Early versions of the Microsoft PPTP virtual private network software used the same RC4 key for the sender and the receiver. Which attack is the network vulnerable to when a stream...
- Question #113
How does NTP help with security monitoring?
- Question #114
Which hash algorithm is cryptography used in certificate generation?
- Question #115
Which description is an example of whaling?
- Question #116
Which tool provides universal query access to text based data such as event logs and file system?
- Question #117
You have deployed an enterprise-wide host/endpoint technology for all of the company corporate PCs. Management asks you to block a selected set of applications on all corporate PCs...
- Question #118
What does the sum of the risks presented by an application represent for that application?
- Question #119
The FMC can share HTML, PDF and CSV data types that relate to a specific event type. Which event type?
- Question #120
What are two Features of NGFW:
- Question #121
How does NTP help with monitoring?
- Question #122
Which protocols is primarily supported by the 3rd layer of the OSI ref models ?
- Question #123
What Does the sum of the risk presented by an application represent for that application ?
- Question #124
Which protocol is primarily supported by the Fourth layer of the Open Systems Interconnection reference model?
- Question #125
As per RFC 1035 which transport layer protocol is used for DNS zone transfer?
- Question #126
Which of the following are some useful reports you can collect from Cisco ISE related to endpoints? (Select all that apply.)
- Question #127
Which of the following are examples of system-based sandboxing implementations? (Select all that apply.)
- Question #128
Which of the following are public key standards?
- Question #129
which protocol helps to synchronizes and correlate events across multiple network devices:
- Question #130
which security principle is violated by running all processes as root/admin
- Question #131
DNS query uses which protocol
- Question #132
Which data type is the most beneficial to recreate a binary file for malware analysis
- Question #133
Which options is true when using the traffic mirror feature in a switch?
- Question #134
Which term represents the likely hood of potential danger that could take advantage of a weakness in a system?
- Question #135
You have deployed an enterprise-wide-host/endpoint technology for all of the company corporate PCs Management asks you to block a selected set application on all corporate PCs. Whi...
- Question #136
In which context is it inappropriate to use a hash algorithm?
- Question #137
Which purpose of the certificate revocation list is true?
- Question #138
Company XX must filter/control some application and limited connection based on location across the network, which technology can be used?
- Question #139
Which evasion method servers as an important functionality of ransomware?
- Question #140
Which NTP service is a best practice to ensure that all network devices are synchronized with a reliable and trusted time source?
- Question #141
Which two protocols are often used for DDoS amplification attacks (choose two)
- Question #142
Which option is true when using the traffic mirror feature in a switch?
- Question #143
Which purpose of a security risk assessment is true?
- Question #144
Which vulnerability is an example of Heartbleed?
- Question #145
Endpoint logs indicate that a machine has obtained an unusual gateway address and unusual DNS servers via DHCP. Which option is this situation most likely an example of?
- Question #146
Which three fields are within an X.509v3 end entity certificate? (Choose three).
- Question #147
What event types does FMC record?
- Question #148
A child process that's permitted to continue on its own after its parent process is terminated. What is that child process called?
- Question #149
Which type of technology is used for detecting unusual patterns and anomalous behavior on a network?
- Question #150
What type of algorithm uses the same key to encrypt and decrypt data?
- Question #151
Which Statement about personal firewalls is true?
- Question #152
What Linux commands show the process for all users?
- Question #153
What two types of attacks are examples of ICMP DoS attacks? (Choose two.)