Online Access Free Cisco.200-201.v2022-02-15.q130 Practice Test (Page 3)

200-201 Exam Question 6

An analyst is investigating a host in the network that appears to be communicating to a command and control server on the Internet. After collecting this packet capture the analyst cannot determine the technique and payload used for the communication.

Which obfuscation technique is the attacker using?

A.Base64 encoding

B.SHA-256 hashing

C.ROT13 encryption

D.transport layer security encryption

200-201 Exam Question 7

When trying to evade IDS/IPS devices, which mechanism allows the user to make the data incomprehensible without a specific key, certificate, or password?

A.fragmentation

B.pivoting

C.encryption

D.stenography

200-201 Exam Question 8

Refer to the exhibit. Which event is occurring?

A.A binary is being submitted to run on VM cuckoo1

B.A binary on VM cuckoo1 is being submitted for evaluation

C.A binary named "submit" is running on VM cuckoo1.

D.A URL is being evaluated to see if it has a malicious binary

200-201 Exam Question 9

An analyst discovers that a legitimate security alert has been dismissed.
Which signature caused this impact on network traffic?

A.true negative

B.false negative

C.false positive

D.true positive

200-201 Exam Question 10

Refer to the exhibit.

Which event is occurring?

A.A binary named "submit" is running on VM cuckoo1.

B.A binary is being submitted to run on VM cuckoo1

C.A binary on VM cuckoo1 is being submitted for evaluation