Racheal is an incident handler working in InceptionTech organization. Recently, numerous employees are complaining about receiving emails from unknown senders. In order to prevent employees against spoofing emails and keeping security in mind, Racheal was asked to take appropriate actions in this matter. As a part of her assignment, she needs to analyze the email headers to check the authenticity of received emails.
Which of the following protocol/authentication standards she must check in email header to analyze the email authenticity?
A. POP
B. ARP
C. SNMP
D. DKIM
正解:D
解説: (Pass4Test メンバーにのみ表示されます)
質問 2:
Mr. Smith is a lead incident responder of a small financial enterprise having few branches in Australia. Recently, the company suffered a massive attack losing USD 5 million through an inter-banking system. After in-depth investigation on the case, it was found out that the incident occurred because 6 months ago the attackers penetrated the network through a minor vulnerability and maintained the access without any user being aware of it. Then, he tried to delete users' fingerprints and performed a lateral movement to the computer of a person with privileges in the inter-banking system.
Finally, the attacker gained access and did fraudulent transactions.
Based on the above scenario, identify the most accurate kind of attack.
A. Phishing
B. Denial-of-service attack
C. APT attack
D. Ransomware attack
正解:C
解説: (Pass4Test メンバーにのみ表示されます)
質問 3:
An organization named Sam Morison Inc. decided to use cloud-based services to reduce the cost of maintenance. The organization identified various risks and threats associated with cloud service adoption and migrating business-critical data to thirdparty systems. Hence, the organization decided to deploy cloud-based security tools to prevent upcoming threats.
Which of the following tools help the organization to secure the cloud resources and services?
A. Burp Suite
B. Alert Logic
C. Wireshark
D. Nmap
正解:B
解説: (Pass4Test メンバーにのみ表示されます)
質問 4:
Robert is an incident handler working for Xsecurity Inc. One day, his organization faced a massive cyberattack and all the websites related to the organization went offline. Robert was on duty during the incident and he was responsible to handle the incident and maintain business continuity. He immediately restored the web application service with the help of the existing backups.
According to the scenario, which of the following stages of incident handling and response (IH&R) process does Robert performed?
A. Eradication
B. Notification
C. Evidence gathering and forensics analysis
D. Recovery
正解:D
解説: (Pass4Test メンバーにのみ表示されます)
質問 5:
Jason is an incident handler dealing with malware incidents. He was asked to perform memory dump analysis in order to collect the information about the basic functionality of any program. As a part of his assignment, he needs to perform string search analysis to search for the malicious string that could determine harmful actions that a program can perform. Which of the following string-searching tools Jason needs to use to do the intended task?
A. Dependency Walker
B. Process Explorer
C. PEView
D. BinText
正解:D
解説: (Pass4Test メンバーにのみ表示されます)
質問 6:
Kim, an analyst, is looking for an intelligence-sharing platform to gather and share threat information from a variety of sources. He wants to use this information to develop security policies to enhance the overall security posture of his organization.
Which of the following sharing platforms should be used by Kim?
A. OmniPeek
B. Cuckoo sandbox
C. Blueliv threat exchange network
D. PortDroid network analysis
正解:C
解説: (Pass4Test メンバーにのみ表示されます)
質問 7:
Steve works as an analyst in a UK-based firm. He was asked to perform network monitoring to find any evidence of compromise. During the network monitoring, he came to know that there are multiple logins from different locations in a short time span. Moreover, he also observed certain irregular log in patterns from locations where the organization does not have business relations. This resembles that somebody is trying to steal confidential information.
Which of the following key indicators of compromise does this scenario present?
A. Unexpected patching of systems
B. Geographical anomalies
C. Unusual activity through privileged user account
D. Unusual outbound network traffic
正解:B
解説: (Pass4Test メンバーにのみ表示されます)
質問 8:
Alice, an analyst, shared information with security operation managers and network operations center (NOC) staff for protecting the organizational resources against various threats. Information shared by Alice was highly technical and include threat actor TTPs, malware campaigns, tools used by threat actors, and so on.
Which of the following types of threat intelligence was shared by Alice?
A. Strategic threat intelligence
B. Tactical threat intelligence
C. Operational threat intelligence
D. Technical threat intelligence
正解:B
解説: (Pass4Test メンバーにのみ表示されます)
1099 お客様のコメント





川田** -
CPTIA平易な記述となっているので初学者でも自学自習進めやすい内容だと思います。使い込みたいと思います。