1. Home
  2. Cisco
  3. 350-701

Cisco 350-701 Online Practice Questions and Exam Preparation

350-701 Exam Details

  • Exam Code
    :350-701
  • Exam Name
    :Implementing and Operating Cisco Security Core Technologies (SCOR)
  • Certification
    :CCIE Security
  • Vendor
    :Cisco
  • Total Questions
    :784 Q&As
  • Last Updated
    :May 30, 2026

Cisco 350-701 Online Questions & Answers

  • Question 521:

    What is the difference between Cross-site Scripting and SQL Injection, attacks?

    A. Cross-site Scripting is an attack where code is injected into a database, whereas SQL Injection is an attack where code is injected into a browser.
    B. Cross-site Scripting is a brute force attack targeting remote sites, whereas SQL Injection is a social engineering attack.
    C. Cross-site Scripting is when executives in a corporation are attacked, whereas SQL Injection is when a database is manipulated.
    D. Cross-site Scripting is an attack where code is executed from the server side, whereas SQL Injection is an attack where code is executed from the client side.

  • Question 522:

    A network administrator needs a solution to match traffic and allow or deny the traffic based on the type of application, not just the source or destination address and port used. Which kind of security product must the network administrator implement to meet this requirement?

    A. nextgeneration firewall
    B. web application firewall
    C. next generation intrusion prevention system
    D. intrusion detection system

  • Question 523:

    What are the two distribution methods available to an administrator when performing a fresh rollout of the Cisco AnyConnect Secure Mobility Client? (Choose two.)

    A. web deploy
    B. SFTP
    C. TFTP
    D. cloud update
    E. predeploy

  • Question 524:

    Which attack is preventable by Cisco ESA but not by the Cisco WSA?

    A. buffer overflow
    B. DoS
    C. SQL injection
    D. phishing

  • Question 525:

    During a recent security audit, a Cisco IOS router with a working IPSEC configuration using IKEv1 was flagged for using a wildcard mask with the crypto isakmp key command. The VPN peer is a SOHO router with a dynamically assigned IP address. Dynamic DNS has been configured on the SOHO router to map the dynamic IP address to the host name of vpn.sohoroutercompany.com. In addition to the command crypto isakmp key Cisc123456789 hostname vpn.sohoroutercompany.com, what other two commands are now required on the Cisco IOS router far the VPN to continue to function after the wildcard command is removed? (Choose two.)

    A. ip host vpn.sohoroutercompany.com
    B. crypto isakmp identity hostname
    C. Add the dynamic keyword to the existing crypto map command
    D. fqdn vpn.sohoroutercompany.com
    E. ip name-server

  • Question 526:

    Which two VPN tunneling protocols support the use of IPsec to provide data integrity, authentication, and data encryption? (Choose two.)

    A. Secure Socket Tunneling Protocol
    B. OpenVPN
    C. Generic Routing Encapsulation Protocol
    D. Layer 2 Tunneling Protocol
    E. Point-to-Point Tunneling Protocol

  • Question 527:

    What can be integrated with Cisco Threat Intelligence Director to provide information about security threats, which allows the SOC to proactively automate responses to those threats?

    A. Cisco Umbrella
    B. External Threat Feeds
    C. Cisco Threat Grid
    D. Cisco Stealthwatch

  • Question 528:

    What is a feature of an endpoint detection and response solution?

    A. ensuring the security of network devices by choosing which devices are allowed to reach the network
    B. capturing and clarifying data on email, endpoints, and servers to mitigate threats
    C. rapidly and consistently observing and examining data to mitigate threats
    D. preventing attacks by identifying harmful events with machine learning and conduct-based defense

  • Question 529:

    What are two benefits of Flexible NetFlow records? (Choose two)

    A. They allow the user to configure flow information to perform customized traffic identification
    B. They provide attack prevention by dropping the traffic
    C. They provide accounting and billing enhancements
    D. They converge multiple accounting technologies into one accounting mechanism
    E. They provide monitoring of a wider range of IP packet information from Layer 2 to 4

  • Question 530:

    What are two functionalities of northbound and southbound APIs within Cisco SDN architecture? (Choose two.)

    A. Southbound APIs are used to define how SDN controllers integrate with applications.
    B. Southbound interfaces utilize device configurations such as VLANs and IP addresses.
    C. Northbound APIs utilize RESTful API methods such as GET, POST, and DELETE.
    D. Southbound APIs utilize CLI, SNMP, and RESTCONF.
    E. Northbound interfaces utilize OpenFlow and OpFlex to integrate with network devices.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Cisco exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 350-701 exam preparations and Cisco certification application, do not hesitate to visit our Vcedump.com to find your solutions here.