Cisco 210-250 Online Practice Questions and Exam Preparation

Cisco 210-250 Online Questions & Answers

• Question 861:

  A lack of validation of the ARP replies can allow an attacker to successfully execute what type of attack?

  A. man in the middle
  B. rogue DHCP server
  C. DNS spoofing
  D. replay
  A. man in the middle

• Question 862:

  Which of the following is something WMI can't be used for?

  A. To schedule times for processes to run
  B. To assign and change drive label
  C. To uninstall an application
  D. To enable or disable error logging
  C. To uninstall an application

• Question 863:

  DRAG DROP

  Match the netstat command line flags on the left to their associated effects on the right:

  Select and Place:

  

  

• Question 864:

  Which one of the following is the first exchange during SSHv1 authentication negotiation?

  A. The server requests a username and password from the user.
  B. The server sends a public key to the client.
  C. The client generates a session key.
  D. The client and server agree upon the encryption algorithm.
  B. The server sends a public key to the client.

• Question 865:

  Which three are reasons for using HTTPS? (Choose three.)

  A. for the web server to authenticate the browser using an EAP method
  B. to encrypt the data that is sent between the browser and the web server
  C. to ensure the identity, trust, and validity of the web server
  D. to ensure that the data that is sent between the browser and the web server cannot be decrypted then re-encrypted by a man-in-the-middle
  E. to avoid detection when used to transport the attack CnC traffic
  B. to encrypt the data that is sent between the browser and the web server
  C. to ensure the identity, trust, and validity of the web server
  E. to avoid detection when used to transport the attack CnC traffic

• Question 866:

  Stateful and traditional firewalls can analyze packets and judge them against a set of predetermined rules called access control lists (ACLs). They inspect which of the following elements within a packet? (Choose two.)

  A. Session headers
  B. NetFlow flow information
  C. Source and destination ports and source and destination IP addresses
  D. Protocol information
  C. Source and destination ports and source and destination IP addresses
  D. Protocol information

• Question 867:

  What are the two primary Linux processes that are used for managing services? (Choose two.)

  A. System V init
  B. Systemd
  C. Task Manager
  D. Service Control Manager
  A. System V init
  B. Systemd

• Question 868:

  If a web server accepts input from the user and passes it to a bash shell, to which attack method if it vulnerable?

  A. input validation
  B. hash collision
  C. command injection
  D. integer overflow
  C. command injection

• Question 869:

  Chain of custody, in legal contexts, refers to the chronological documentation or paper trail, showing the seizure, custody, control, transfer, analysis, and disposition of physical or electronic evidence. What five of the following types of information are contained in chain of custody documentation? (Choose five.)

  A. Who was the attacker?
  B. What is the evidence?
  C. What attack method was used?
  D. What method was used to collect the evidence?
  E. When was the evidence collected?
  F. Who handled the evidence and why did that person need to handle the evidence?
  G. What software was used to commit the attack?
  H. Where is the evidence permanently stored?
  I. Why did the attack happen?
  B. What is the evidence?
  D. What method was used to collect the evidence?
  E. When was the evidence collected?
  F. Who handled the evidence and why did that person need to handle the evidence?
  H. Where is the evidence permanently stored?

• Question 870:

  Which one of the following options is the illegitimate DHCP server that is referred in context to a DHCP server-based attack?

  A. a sitting duck server
  B. a rogue DHCP server
  C. a target server
  D. an erroneous server
  B. a rogue DHCP server