Online Access Free 156-730 Exam Questions

How can CPU Level Emulation detect ROP?

• A.Wrong order in the ROP Gadgets Dictionary.
• B.It is detected as soon as the evasion code runs and injects the malicious code into a legitimate process.
• C.Increased CPU temperature.
• D.Locate a CPU flow buffer with mismatch between called and returned addresses.

Which SmartConsole can you use to view Threat Emulation forensics reports?

• A.SmartView Reporter
• B.SmartLog
• C.SmartView Monitor
• D.SmartDashboard

What's the password for the encrypted malicious file available via the Threat Emulation forensics report?

• A.infected
• B.malicious
• C.forensics
• D.password

Select the true statement about Threat Emulation Open Server appliances.

• A.Threat Extraction is not supported on an open platform.
• B.Supports custom images without any special requirement.
• C.No requirement to enable VT (Hardware Virtualization).
• D.Only Cloud emulation service is supported on an open platform.

What attack vectors are protected by using the SandBlast Agent?

• A.Mail, Web, Office 365
• B.email, Lateral movement, Removable media, encrypted channels
• C.Office 365, Outside of the office, removable media, lateral movement
• D.Outside the office, removable media, lateral movement