200-201 Exam Question 181

An engineer needs to configure network systems to detect command and control communications by decrypting ingress and egress perimeter traffic and allowing network security devices to detect malicious outbound communications. Which technology should be used to accomplish the task?
  • 200-201 Exam Question 182

    How does a certificate authority impact security?
  • 200-201 Exam Question 183

    A user reports that a mobile application is working very slowly. A DDoS detection tool reports high-volume traffic. During which phase does the CSIRT ensure that the incident does not continue and confirm that the organization has taken the required actions?
  • 200-201 Exam Question 184

    Which type of attack involves sending input commands to a web server to access data?
  • 200-201 Exam Question 185

    A security engineer notices confidential data being exfiltrated to a domain "Ranso4134-mware31-895" address that is attributed to a known advanced persistent threat group The engineer discovers that the activity is part of a real attack and not a network misconfiguration. Which category does this event fall under as defined in the Cyber Kill Chain?