Cisco 210-250 Online Practice Questions and Exam Preparation

Cisco 210-250 Online Questions & Answers

• Question 231:

  What is an example of a reconnaissance attack tool that will cycle through all well-known ports to provide a complete list of all services that are running on the hosts?

  A. Netuse
  B. ipconfig
  C. NMAP
  D. show run
  C. NMAP

• Question 232:

  Which term represents the chronological record of how evidence was collected, analyzed, preserved, and transferred?

  A. chain of evidence
  B. evidence chronology
  C. chain of custody
  D. record of safekeeping
  C. chain of custody

• Question 233:

  Which of the following is true when describing threat intelligence?

  A. Threat intelligence's primary purpose is to make money by exploiting threats.
  B. Threat intelligence's primary purpose is to inform business decisions regarding the risks and implications associated with threats.
  C. With threat intelligence, threat actors can become more efficient to carry out attacks.
  D. Threat intelligence is too difficult to obtain.
  B. Threat intelligence's primary purpose is to inform business decisions regarding the risks and implications associated with threats.

• Question 234:

  Which two statements best explain why domain shadowing is difficult to detect? (Choose two.)

  A. The created subdomains are numerous, short lived, and random, with no discernible patterns.
  B. The attacker gains admin access to a legitimate domain, and uses that legitimate domain to register many shady subdomains.
  C. The attacker rapidly rotates a single domain to a large list of IP addresses, to avoid detection.
  D. The exploit kit landing page subdomains are usually active for a long time and branched into using both third-level and fourth-level domains (for example, brandmuellergeifiseer.astarentals.co.uk).
  A. The created subdomains are numerous, short lived, and random, with no discernible patterns.
  B. The attacker gains admin access to a legitimate domain, and uses that legitimate domain to register many shady subdomains.

• Question 235:

  What two protocols are used to retrieve email? (Choose two.)

  A. IMAP
  B. POP
  C. LDAP
  D. MTA
  A. IMAP
  B. POP

• Question 236:

  On which of the following can exploit kits be run from?

  A. Web servers
  B. Email servers
  C. NTP servers
  D. Firewalls
  A. Web servers

• Question 237:

  Which access control model uses the function of a subject in an organization?

  A. Discretionary access control
  B. Attribute-based access control
  C. Role-based access control
  D. Mandatory access control
  C. Role-based access control

• Question 238:

  Which three of the following statements are benefits of RSPAN? (Choose three.)

  A. RSPAN uses existing hardware to provide a cost-effective monitoring solution.
  B. RSPAN eliminates the need for VLAN-capable devices between the source and destination to monitor traffic.
  C. With RSPAN working at the IOS driver level, it bypasses any ACLs that are applied to the 802.1Q trunk.
  D. RSPAN allows multiple sources for enterprise-wide port monitoring.
  E. RSPAN does not require the capture device to be directly connected.
  A. RSPAN uses existing hardware to provide a cost-effective monitoring solution.
  D. RSPAN allows multiple sources for enterprise-wide port monitoring.
  E. RSPAN does not require the capture device to be directly connected.

• Question 239:

  Which three security services do digital signatures provide? (Choose three.)

  A. confidentiality
  B. integrity
  C. non-repudiation
  D. authenticity
  E. availability
  B. integrity
  C. non-repudiation
  D. authenticity

• Question 240:

  Which of the following are examples of vulnerability and port scanners? (Select all that apply.)

  A. SuperScan
  B. nmap
  C. Nexpose
  D. Nessus
  B. nmap
  C. Nexpose
  D. Nessus