919 お客様のコメント
クリック」
質問 1:
Which three log sources are supported by QRadar? (Choose three.)
A. Sourcefire Defense Center
B. Barracuda Web Filter
C. TLS multiline Filter
D. Oracle Database Listener
E. Log files via SFTP
F. Java Database Connectivity (JDBC)
正解:A,D,F
質問 2:
Where are events related to a specific offense found?
A. Under Log Activity, search for Events associated with an Offense
B. Offenses Tab and Event List window
C. Offense Summary Page and List of Events window
D. Dashboard and List of Events window
正解:B
質問 3:
Where could you get additional details on why the offense was triggered when Summary page?
A. Display > Notes
B. Display > Events
C. Display > Rules
D. Display > Flows
正解:C
質問 4:
Which type of search uses a structured query language to retrieve specified fields from the events, flows, and simarc tables?
A. Advanced Search
B. Quick Search
C. Asset Search
D. Add Filter
正解:A
解説: (Pass4Test メンバーにのみ表示されます)
質問 5:
What are the steps to get this window within an offense?
A. Right click on the IP > Information > Asset Profile
B. Right click on the IP > Information > WHOIS Lookup
C. Right click on the IP > Information > DNS Lookup
D. Right click on the IP > Information > Reverse DNS
正解:C
質問 6:
What does the Network Hierachy provide relating to the "whole picture" that is helpful durin an investigation?
A. It allows for the identification of known hosts on the network versus those that aren't members of the network.
B. It allows hosts that are marked to be known to have vulnerabilities to be seen quickly.
C. It allows for the removal of infected hosts from the network before being added back into the network.
D. It allows for the isolation of traffic between the hosts in question for more in depth analysis.
正解:A
Which three log sources are supported by QRadar? (Choose three.)
A. Sourcefire Defense Center
B. Barracuda Web Filter
C. TLS multiline Filter
D. Oracle Database Listener
E. Log files via SFTP
F. Java Database Connectivity (JDBC)
正解:A,D,F
質問 2:
Where are events related to a specific offense found?
A. Under Log Activity, search for Events associated with an Offense
B. Offenses Tab and Event List window
C. Offense Summary Page and List of Events window
D. Dashboard and List of Events window
正解:B
質問 3:
Where could you get additional details on why the offense was triggered when Summary page?
A. Display > Notes
B. Display > Events
C. Display > Rules
D. Display > Flows
正解:C
質問 4:
Which type of search uses a structured query language to retrieve specified fields from the events, flows, and simarc tables?
A. Advanced Search
B. Quick Search
C. Asset Search
D. Add Filter
正解:A
解説: (Pass4Test メンバーにのみ表示されます)
質問 5:
What are the steps to get this window within an offense?
A. Right click on the IP > Information > Asset Profile
B. Right click on the IP > Information > WHOIS Lookup
C. Right click on the IP > Information > DNS Lookup
D. Right click on the IP > Information > Reverse DNS
正解:C
質問 6:
What does the Network Hierachy provide relating to the "whole picture" that is helpful durin an investigation?
A. It allows for the identification of known hosts on the network versus those that aren't members of the network.
B. It allows hosts that are marked to be known to have vulnerabilities to be seen quickly.
C. It allows for the removal of infected hosts from the network before being added back into the network.
D. It allows for the isolation of traffic between the hosts in question for more in depth analysis.
正解:A
Asou -
C2150-612の問題集を解いて、色々参考になりました!試験に受かる気がします!