Cisco®
CompTIA
Checkpoint
ISC
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
ISC2
Splunk®
Scrum
All Vendors
  2. Home
  3. Exams
  4. Checkpoint
  5. 156-730

Free 156-730 Exam Braindumps (page: 3)

Page 2 of 11
PDF with 40 Questions

Anti-Bot uses the following detection/prevention features:

1. Reputation lookup of DNS/IP/URL access
2. Dynamic analysis for Bots
3. Outbound SPAM
4. Bot behavior signatures

  1. 1, 2, and 3
  2. 1, 3 and 4
  3. 1 and 3
  4. 2 and 3

Answer(s): B



What is a ROP Gadgets Dictionary?

  1. Lookup table used by CPU Level Emulation to detect malware
  2. A generated stack of return addresses
  3. Feature sets which can be used to discover the true meaning of the code
  4. List of commonly used passwords

Answer(s): B



Which deployment modes support Prevent?

1. Inline
2. SPAN port
3. MTA

  1. 1 and 3 are correct
  2. 1, 2, and 3 are correct
  3. 1 and 2 are correct
  4. 2 and 3 are correct

Answer(s): A



How can CPU Level Emulation detect ROP?

  1. Locate a CPU flow buffer with mismatch between called and returned addresses.
  2. Increased CPU temperature.
  3. Wrong order in the ROP Gadgets Dictionary.
  4. It is detected as soon as the evasion code runs and injects the malicious code into a legitimate process.

Answer(s): A






Post your Comments and Discuss Checkpoint 156-730 exam with other Community members: