nerdexam
Exams350-201Questions#62
Cisco

350-201 · Question #62

350-201 Question #62: Real Exam Question with Answer & Explanation

The correct answer is B: A search is conducted for additional seeds. The script expands a known seed list by searching for and discovering additional domains to include as seeds for threat intelligence or DGA detection.

Automation

Question

Refer to the exhibit. What results from this script?

Exhibit

350-201 question #62 exhibit

Options

  • ASeeds for existing domains are checked
  • BA search is conducted for additional seeds
  • CDomains are compared to seed rules
  • DA list of domains as seeds is blocked

Explanation

The script expands a known seed list by searching for and discovering additional domains to include as seeds for threat intelligence or DGA detection.

Common mistakes.

  • A. Checking seeds for existing domains describes a validation or lookup action against already-known entries, not a discovery search operation that generates new seed candidates.
  • C. Comparing domains to seed rules describes a matching or filtering operation against an existing ruleset, not the outward search for new seeds that the script performs.
  • D. Blocking a list of domains as seeds describes an enforcement or blacklisting action, which is an output operation distinct from the search and discovery logic shown in the script.

Concept tested. Threat intelligence domain seed discovery scripting

Topics

#domain analysis#DGA detection#seed generation#scripting

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 350-201 Practice