CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. ISC2
  5. CSSLP

Free CSSLP Exam Braindumps (page: 49)

Page 49 of 88
PDF with 357 Questions

Which of the following is an open source network intrusion detection system?

  1. NETSH
  2. Macof
  3. Sourcefire
  4. Snort

Answer(s): D

Explanation:

Snort is an open source network intrusion prevention and detection system that operates as a network sniffer. It logs activities of the network that is matched with the predefined signatures. Signatures can be designed for a wide range of traffic, including Internet Protocol (IP), Transmission Control Protocol (TCP), User Datagram Protocol (UDP), and Internet Control Message Protocol (ICMP). The three main modes in which Snort can be configured are as follows:
Sniffer mode: It reads the packets of the network and displays them in a continuous stream on the console. Packet logger mode: It logs the packets to the disk. Network intrusion detection mode: It is the most complex and configurable configuration, allowing Snort to analyze network traffic for matches against a user-defined rule set. Answer B is incorrect. Macof is a tool of the dsniff tool set and used to flood the local network with random MAC addresses. It causes some switches to fail open in repeating mode, and facilitates sniffing. Answer C is incorrect. Sourcefire is the company that owns and maintains Snort. Answer A is incorrect. NETSH is not a network intrusion detection system. NETSH is a command line tool to configure TCP/IP settings such as the IP address, Subnet Mask, Default Gateway, DNS, WINS addresses, etc.



You work as a Security Manager for Tech Perfect Inc. The company has a Windows based network. It is required to determine compatibility of the systems with custom applications. Which of the following techniques will you use to accomplish the task?

  1. Safe software storage
  2. Antivirus management
  3. Backup control
  4. Software testing

Answer(s): D

Explanation:

In order to accomplish the task, you should use the software testing technique. By using this technique you can determine compatibility of systems with custom applications or you can identify other unforeseen interactions. You can also use the software testing technique while you are upgrading software. Answer B is incorrect. You can use the antivirus management to save the systems from viruses, unexpected software interactions, and the subversion of security controls. Answer A is incorrect. You can use the safe software storage technique to ensure that the software and backup copies have not been modified without authorization. Answer C is incorrect. You can use the backup control to perform back up of software and data.



Adrian is the project manager of the NHP Project. In her project there are several work packages that deal with electrical wiring. Rather than to manage the risk internally she has decided to hire a vendor to complete all work packages that deal with the electrical wiring. By removing the risk internally to a licensed electrician Adrian feels more comfortable with project team being safe. What type of risk response has Adrian used in this example?

  1. Acceptance
  2. Avoidance
  3. Mitigation
  4. Transference

Answer(s): D

Explanation:

This is an example of transference. When the risk is transferred to a third party, usually for a fee, it creates a contractual-relationship for the third party to manage the risk on behalf of the performing organization. Risk response planning is a method of developing options to decrease the amount of threats and make the most of opportunities. The risk response should be aligned with the consequence of the risk and cost-effectiveness. This planning documents the processes for managing risk events. It addresses the owners and their responsibilities, risk identification, results from qualification and quantification processes, budgets and times for responses, and contingency plans. The various risk response planning techniques are as follows: Risk acceptance: It indicates that the project team has decided not to change the project management plan to deal with a risk, or is unable to identify any other suitable response strategy. Risk avoidance: It is a technique for a threat, which creates changes to the project management plan that are meant to either eliminate the risk or to protect the project objectives from this impact. Risk mitigation: It is a list of specific actions being taken to deal with specific risks associated with the threats and seeks to reduce the probability of occurrence or impact of risk below an acceptable threshold. Risk transference: It is used to shift the impact of a threat to a third party, together with the ownership of the response.



You work as a CSO (Chief Security Officer) for Tech Perfect Inc. You have a disaster scenario and you want to discuss it with your team members for getting appropriate responses of the disaster. In which of the following disaster recovery tests can this task be performed?

  1. Structured walk-through test
  2. Full-interruption test
  3. Parallel test
  4. Simulation test

Answer(s): D

Explanation:

A simulation test is a method used to test the disaster recovery plans. It operates just like a structured walk-through test. In the simulation test, the members of a disaster recovery team present with a disaster scenario and then, discuss on appropriate responses. These suggested responses are measured and some of them are taken by the team. The range of the simulation test should be defined carefully for avoiding excessive disruption of normal business activities. Answer A is incorrect. The structured walk-through test is also known as the table-top exercise. In structured walk-through test, the team members walkthrough the plan to identify and correct weaknesses and how they will respond to the emergency scenarios by stepping in the course of the plan. It is the most effective and competent way to identify the areas of overlap in the plan before conducting more challenging training exercises. Answer B is incorrect. A full-interruption test includes the operations that shut down at the primary site and are shifted to the recovery site according to the disaster recovery plan. It operates just like a parallel test. The full-interruption test is very expensive and difficult to arrange. Sometimes, it causes a major disruption of operations if the test fails. Answer C is incorrect. A parallel test includes the next level in the testing procedure, and relocates the employees to an alternate recovery site and implements site activation procedures. These employees present with their disaster recovery responsibilities as they would for an actual disaster. The disaster recovery sites have full responsibilities to conduct the day-to-day organization's business.



Page 49 of 88



Post your Comments and Discuss ISC2 CSSLP exam with other Community members:

Jack commented on October 24, 2024
Muito bom as perguntas
Anonymous
upvote

Diogo Gomes commented on October 24, 2024
As Muhammad Saleem comented, question 20 is wrong. Entities are found in the Data layer and not in the Interface layer.
UNITED STATES
upvote

Neena commented on October 24, 2024
This dump PDF gets the job done
Anonymous
upvote

test commented on October 24, 2024
good one to go through
Anonymous
upvote

Kamal commented on October 24, 2024
I’m 90% sure I owe my new certification to these dumps, and 10% to coffee. LOL Questions are valid and same in the real exam.
Netherlands
upvote

Maseh commented on October 24, 2024
Who knew cramming could be so effective? These dumps saved me from a meltdown!
EUROPEAN UNION
upvote

Drew commented on October 24, 2024
Used these dumps, nailed the exam—now I’m basically a genius (or close enough).
Australia
upvote

Shawn commented on October 24, 2024
As you must know by now the exam is extremely hard. The only way to pass is to know the questions and answers and I found these dump questions very relevant to actual exam.
Canada
upvote

Vidhi Mishra commented on October 24, 2024
Huge set of Cloud Dital leader exam
Anonymous
upvote

jakir commented on October 24, 2024
its really more help full.
BANGLADESH
upvote

TheUser commented on October 23, 2024
So far seems good
Anonymous
upvote

John commented on October 23, 2024
great insight
BOTSWANA
upvote

nigga commented on October 23, 2024
niggaaaaaaaaaa
CANADA
upvote

Chris commented on October 23, 2024
Is this site currently valid for the AZ-900 exam as of October 23, 2024?
Anonymous
upvote

Rian commented on October 23, 2024
Good night comment
Anonymous
upvote

K commented on October 23, 2024
Good Questions
UNITED STATES
upvote

Jayson commented on October 23, 2024
Can someone confirm if this is for the 7th edition or not?
AUSTRALIA
upvote

anonymus commented on October 23, 2024
master database differential backup is not supported in sql server
EUROPEAN UNION
upvote

Arun commented on October 23, 2024
Very useful for cert
GERMANY
upvote

Brian commented on October 23, 2024
Good questions
Anonymous
upvote

TiVO commented on October 22, 2024
Out of curiosity (I thought the 1101 had 90 questions and the 1102 has 90 questions) which questions exactly on this test rotation or is it random?
Anonymous
upvote

Manish commented on October 22, 2024
This is created a very professional manner with 100% correct answer
Anonymous
upvote

Nikhil commented on October 22, 2024
Nice Dump with good questions!
Anonymous
upvote

Halisi commented on October 22, 2024
Good Questions
KENYA
upvote

Bilal28 commented on October 22, 2024
The dump still valid please ?
FRANCE
upvote

Folarin Ibukun commented on October 22, 2024
The dump is helpful, excellent
Anonymous
upvote

Luxmy commented on October 22, 2024
Thanks to these dumps, I spent more time celebrating than studying—totally worth it!
New Zealand
upvote

Fatoosh commented on October 22, 2024
I passed my exam with in fist sit-down and with a bit of panic... but mostly these dumps questions were all in the exam.
INDIA
upvote

Lax commented on October 22, 2024
Helpful to practice and prepare for the exam.
Anonymous
upvote

Dilsha commented on October 22, 2024
Thank you the website owner for making these exam questions available for free. It helped me clear my paper.
INDIA
upvote

Tommy commented on October 22, 2024
Passed the exam today with this dump. Very happy. Now Go Trump Go. Make this country great again.
UNITED STATES
upvote

Tubby commented on October 22, 2024
Asked by my employee to pass this exam. So I bought the full version of this exam dump to quickly prepare and pass the exam. I did not want to waste my out of office time to prepare for this.
UNITED STATES
upvote

SSSR commented on October 22, 2024
Great stuff and nicely formatted content. PDF is version is what I highly recommend as it has double the amount of questions.
UNITED KINGDOM
upvote

Nayaran commented on October 21, 2024
First and for most... this exam is extremely hard. Second this exam dump contains majority of the questions. I passed the certification exam.
UNITED STATES
upvote