CISSP-ISSEP Exam Discussions & Posts
Davz
Commented on July 29, 2025
Great help to practice
Anonymous
Goguma
Commented on July 29, 2025
Very helpful
KOREA REPUBLIC OF
Sefali
Commented on July 29, 2025
looking good
INDIA
Soham
Commented on July 29, 2025
Nice & Helpful
AUSTRALIA
Gamja
Commented on July 29, 2025
Very confusing XD
KOREA REPUBLIC OF
Tikker
Commented on July 29, 2025
Happy to share that I passed the AWS SAA-C03 exam! Focused on core services. Used the full PDF version of these questions from this site for final prep. Great resource to test your knowledge before the real thing. Highly recommend it to anyone preparing.
UNITED STATES
Thusitha
Commented on July 28, 2025
Looks great, like to see the explanation for the answer as well.
Anonymous
Bavi
Commented on July 28, 2025
Very Helpful for exam
CANADA
Kevin
Commented on July 28, 2025
For questions 1.. Both A and C are correct and I have taken other tests that say C is correct and not A..
Anonymous
venu K
Commented on July 28, 2025
Very useful
Anonymous
Danny
Commented on July 28, 2025
a very useful website to practice the questions.
CZECH REPUBLIC
rey
Commented on July 28, 2025
great questions
EUROPEAN UNION
Banvi
Commented on July 28, 2025
Hello Learners
I have the SC-300 cert under my belt now. Passed it this afternoon. Questions in this exam dumps are real and word by word.
Worth the time and money if you are going to buy the full version like me.
EUROPEAN UNION
Anushiya
Commented on July 28, 2025
The question set is useful and thanks to the team for the detailed explanation on each questions.
Anonymous
Ali
Commented on July 28, 2025
so far very helpful
Anonymous
Tabby
Commented on July 28, 2025
Thanks for the good questions..!
KOREA REPUBLIC OF
Andrew
Commented on July 28, 2025
Good material
Anonymous
reshma
Commented on July 28, 2025
i have helped a lot
Anonymous
S
Commented on July 28, 2025
good content 3
Anonymous
Suchi
Commented on July 28, 2025
Good content 2
Anonymous
Suchi
Commented on July 28, 2025
good content
Anonymous
ad
Commented on July 28, 2025
are these still on the exam??
Anonymous
anonymous
Commented on July 28, 2025
right for me
UNITED STATES
Native
Commented on July 27, 2025
Useful documents
VIET NAM
Jojo
Commented on July 27, 2025
good info in this exam
Anonymous
Junveer
Commented on July 27, 2025
Cleared this exam with the help of these questions.
This exam prep is very helpful especially free part!
UNITED STATES
Bob Russel Jr.
Commented on July 27, 2025
question 5, a is correct but needs verified
UNITED STATES
mar
Commented on July 27, 2025
Q 151: B doesn't make sense to me as an access badge can be lost/stolen. Wouldn't vid surveillance be a better solution? unless "secure" is the key word here. vid surveillance then doesn't "secure" anything it is more of a deter/monitor solution.... I guess I answered my own question...
UNITED STATES
REY
Commented on July 27, 2025
SO FAR SO GOOD
EUROPEAN UNION
Andreas Wenzel
Commented on July 27, 2025
Answer to Question 1 is wrong.
Correct: every options but not basic
GERMANY
Menzito
Commented on July 27, 2025
Learning a lot, exhausting to run from Question 1 - 473, I wish it was divided
SOUTH AFRICA
SFUsr
Commented on July 27, 2025
great material
Anonymous
Anonymous
Commented on July 27, 2025
super helpful
GERMANY
Anonymous
Commented on July 27, 2025
quite helpful
GERMANY
chetan
Commented on July 27, 2025
Thanks, its really help
JAPAN
rey
Commented on July 27, 2025
very challenging questionaires
EUROPEAN UNION
Raja
Commented on July 27, 2025
good one , thanks for this
Anonymous
rey
Commented on July 27, 2025
knowledgeable contents
EUROPEAN UNION
don
Commented on July 27, 2025
challanging
Anonymous
rey
Commented on July 27, 2025
satisfying questionaires
EUROPEAN UNION
dennid
Commented on July 27, 2025
they are really confusing
Anonymous
papu
Commented on July 27, 2025
nice material
Anonymous
rey
Commented on July 27, 2025
all the questions are refreshing
EUROPEAN UNION
Nayeh
Commented on July 26, 2025
Thanks @Morales,
Congratulation on passing exam.
Anonymous
Morales
Commented on July 26, 2025
Hi @Nayeh
My name is Morales and I am from Mexico. I passed this exam last week. I found the exam a bit hard or maybe I was not prepared for it. But majority of these questions are in the exam.
I wish you best of luck with your exam.
Mexico
MAGICBUNNIEZ
Commented on July 26, 2025
208:Based on the scenario described—where an application server's software is behaving abnormally by generating unexpected outbound traffic over random high ports—the most likely exploited vulnerability is:
Memory Injection (e.g., Buffer Overflow or Code Injection)
Why?
Abnormal process behavior (unexpected network traffic) suggests execution of malicious code injected into the software’s memory.
Random high ports are commonly used by malware for command-and-control (C2) communication or data exfiltration.
Memory-based attacks (e.g., buffer overflows, ROP attacks) can hijack a legitimate process to execute attacker-controlled payloads.
Why Not the Others?
Race Condition
Causes timing-related exploits (e.g., TOCTOU attacks) but does not typically generate network traffic.
Would lead to logic errors, not outbound connections.
Side Loading
Involves loading malicious DLLs/libraries, but this usually happens at startup, not mid-execution.
More common in Windows environments (e.g.,
UNITED STATES
MAGICBUNNIEZ
Commented on July 26, 2025
194: To ensure the organization follows security best practices when transitioning an on-premises application to a cloud-based service, the security team should implement all of the listed controls, as they address different critical aspects of cloud security. However, if prioritizing the most fundamental requirement for a secure cloud deployment, the team should first ensure:
1. Virtualization and Isolation of Resources
Why? Cloud environments rely on multi-tenancy, so virtualization and isolation prevent cross-tenant attacks (e.g., VM escapes, side-channel attacks).
Best Practice: Use hypervisor security, container isolation, and micro-segmentation to enforce strict boundaries between workloads.
Supporting Controls (Also Critical but Secondary to Core Isolation):
2. Network Segmentation
Limits lateral movement if a breach occurs (e.g., separating frontend/backend tiers).
However, isolation at the virtualization layer is more foundational in cloud environments.
3. Data Encryption
UNITED STATES
Josh
Commented on July 26, 2025
for Q483 The company needs to run a Windows containerized .NET 6 job every 10 minutes, with a runtime varying between 1 and 3 minutes, in the AWS Cloud, and do so MOST cost-effectively.
Let's evaluate each solution:
Create an AWS Lambda function based on the container image of the job. Configure Amazon EventBridge to invoke the function every 10 minutes.
AWS Lambda for containers: Lambda now supports deploying functions as container images, including Windows containers. This is a serverless option, meaning you don't manage any servers.
Runtime limits: AWS Lambda functions have a maximum runtime of 15 minutes. Since the job runs between 1 and 3 minutes, it fits well within this limit.
Cost-effectiveness: Lambda's pricing model is based on duration and memory consumed, billed in millisecond increments. You only pay when your code is running. For a job running only 1-3 minutes every 10 minutes, this is incredibly cost-effective because you pay almost nothing for idle time. EventBridg
UNITED STATES
Ash
Commented on July 26, 2025
great studying from portal.
CANADA
q
Commented on July 26, 2025
helpful question
UNITED STATES