CFR-210 Exam Details

  • Exam Code
    :CFR-210
  • Exam Name
    :CyberSec First Responder
  • Certification
    :Logical Operations Certifications
  • Vendor
    :Logical Operations
  • Total Questions
    :100 Q&As
  • Last Updated
    :

Logical Operations CFR-210 Online Questions & Answers

  • Question 31:

    Which of the following is the BEST way to capture all network traffic between hosts on a segmented network?

    A. HIPS
    B. Firewall
    C. Router
    D. Protocol analyzer

  • Question 32:

    A malicious actor sends a crafted email to the office manager using personal information collected from social media. This type of social engineering attack is known as:

    A. spear phishing
    B. vishing
    C. phishing
    D. whaling

  • Question 33:

    During a malware outbreak, a security analyst has been asked to capture network traffic in hourly increments for analysis by the incident response team. Which of the following tcpdump commands would generate hourly pcap files?

    A. tcpdump -nn -i eth0 -w output.pcap -C 100 -W 10
    B. tcpdump -nn -i eth0 -w output.pcap -W 24
    C. tcpdump -nn -i eth0 -w output.pcap -G 3600 -W 14
    D. tcpdump -nn -i eth0 -w output.pcap

  • Question 34:

    Which of the following is an automated password cracking technique that uses a combination of upper and lower case letters, 0-9 numbers, and special characters?

    A. Dictionary attack
    B. Password guessing
    C. Brute force attack
    D. Rainbow tables

  • Question 35:

    A computer attacker has compromised a system by implanting a script that will send 10B packages over port 150. This port is also used for sending heartbeat messages to a central monitoring server. Which of the following BEST describes the tactic used to execute this attack?

    A. Covert channels
    B. Logic bomb
    C. Backdoors
    D. ICMP redirect

  • Question 36:

    An unauthorized network scan may be detected by parsing network sniffer data for:

    A. IP traffic from a single IP address to multiple IP addresses.
    B. IP traffic from a single IP address to a single IP address.
    C. IP traffic from multiple IP addresses to a single IP address.
    D. IP traffic from multiple IP addresses to other networks.

  • Question 37:

    Log review shows that large amounts of data are being sent to an IP address unassociated with the company. Which of the following migration techniques should be implemented?

    A. DNS filtering
    B. System hardening
    C. Proxy
    D. IPS

  • Question 38:

    A company website was hacked via the SQL query below:

    Which of the following did the hackers perform?

    A. Cleared tracks [email protected]
    B. Deleted the entirememberstable
    C. Deleted the email password and login details
    D. Performed an XSS attack

  • Question 39:

    An attacker has sent malicious macro-enabled Office files.

    Which of the following regular expressions will return a list of macro-enabled files?

    A. ^.*?\.(?:xls|ppt|doc)m
    B. ^.*(?:xls|ppt|doc)m.*
    C. ^.*?\.(?:xls|ppt|doc)m$
    D. ^.*(?:xls|ppt|doc)m

  • Question 40:

    Malicious code that can replicate itself using various techniques is referred to as a:

    A. downloader
    B. rootkit
    C. launcher
    D. worm

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Logical Operations exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your CFR-210 exam preparations and Logical Operations certification application, do not hesitate to visit our Vcedump.com to find your solutions here.