CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. EC-Council
  5. 312-39

Free 312-39 Exam Braindumps (page: 7)

Page 6 of 26
PDF with 100 Questions

Which of the following attack can be eradicated by filtering improper XML syntax?

  1. CAPTCHA Attacks
  2. SQL Injection Attacks
  3. Insufficient Logging and Monitoring Attacks
  4. Web Services Attacks

Answer(s): B



Which of the following attack can be eradicated by using a safe API to avoid the use of the interpreter entirely?

  1. Command Injection Attacks
  2. SQL Injection Attacks
  3. File Injection Attacks
  4. LDAP Injection Attacks

Answer(s): B


Reference:

https://www.kiuwan.com/owasp-top-10-a1-injection/



Shawn is a security manager working at Lee Inc Solution. His organization wants to develop threat intelligent strategy plan. As a part of threat intelligent strategy plan, he suggested various components, such as threat intelligence requirement analysis, intelligence and collection planning, asset identification, threat reports, and intelligence buy-in.

Which one of the following components he should include in the above threat intelligent strategy plan to make it effective?

  1. Threat pivoting
  2. Threat trending
  3. Threat buy-in
  4. Threat boosting

Answer(s): C



Which of the following can help you eliminate the burden of investigating false positives?

  1. Keeping default rules
  2. Not trusting the security devices
  3. Treating every alert as high level
  4. Ingesting the context data

Answer(s): A


Reference:

https://stratozen.com/9-ways-eliminate-siem-false-positives/






Post your Comments and Discuss EC-Council 312-39 exam with other Community members:

312-39 Discussions & Posts