CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Cisco®
  5. 350-201

Free 350-201 Exam Braindumps

The incident response team was notified of detected malware. The team identified the infected hosts, removed the malware, restored the functionality and data of infected systems, and planned a company meeting to improve the incident handling capability. Which step was missed according to the NIST incident handling guide?

  1. Contain the malware
  2. Install IPS software
  3. Determine the escalation path
  4. Perform vulnerability assessment

Answer(s): D



Refer to the exhibit. An engineer must tune the Cisco IOS device to mitigate an attack that is broadcasting a large number of ICMP packets. The attack is sending the victim’s spoofed source IP to a network using an IP broadcast address that causes devices in the network to respond back to the source IP address. Which action does the engineer recommend?

  1. Use command ip verify reverse-path interface
  2. Use global configuration command service tcp-keepalives-out
  3. Use subinterface command no ip directed-broadcast
  4. Use logging trap 6

Answer(s): A


Reference:

https://www.ccexpert.us/pix-firewall/ip-verify-reversepath-command.html



Refer to the exhibit. An engineer is analyzing this Vlan0392-int12-239.pcap file in Wireshark after detecting a suspicious network activity. The origin header for the direct IP connections in the packets was initiated by a google chrome extension on a WebSocket protocol. The engineer checked message payloads to determine what information was being sent off-site but the payloads are obfuscated and unreadable. What does this STIX indicate?

  1. The extension is not performing as intended because of restrictions since ports 80 and 443 should be accessible
  2. The traffic is legitimate as the google chrome extension is reaching out to check for updates and fetches this information
  3. There is a possible data leak because payloads should be encoded as UTF-8 text
  4. There is a malware that is communicating via encrypted channels to the command and control server

Answer(s): C



What do 2xx HTTP response codes indicate for REST APIs?

  1. additional action must be taken by the client to complete the request
  2. the server takes responsibility for error status codes
  3. communication of transfer protocol-level information
  4. successful acceptance of the client’s request

Answer(s): D


Reference:

https://restfulapi.net/http-status-codes/#:~:text=HTTP%20defines%20these%20standard%20status,results%20of%20a%20client%27s%20request.&text=2xx%3A%20Success%20–%20Indicates%20that%20the,order%20to%20complete%20their%20request.






Post your Comments and Discuss Cisco® 350-201 exam with other Community members:

350-201 Discussions & Posts