Online Access Free Cisco.350-701.v2025-05-31.q434 Practice Test (Page 34)

350-701 Exam Question 161

An engineer is configuring AMP for endpoints and wants to block certain files from executing. Which outbreak control method is used to accomplish this task?

A.device flow correlation

B.advanced custom detections

C.application blocking list

D.simple detections

350-701 Exam Question 162

Refer to the exhibit.
import requests
client_id = '<Client id>'
api_key = '<API Key>'
url = 'https://api.amp.cisco.com/v1/computers'
response = requests.get(url, auth=(client_id, api_key))
response_json = response.json()
for computer in response_json['data']
hostname = computer['hostname']
print(hostname)
What will happen when the Python script is executed?

A.The hostname will be printed for the client in the client ID field.

B.The hostname will be translated to an IP address and printed.

C.The script will translate the IP address to FODN and print it

D.The script will pull all computer hostnames and print them.

350-701 Exam Question 163

Which type of DNS abuse exchanges data between two computers even when there is no direct connection?

A.Malware installation

B.Command-and-control communication

C.Network footprinting

D.Data exfiltration

Correct Answer: D

Malware installation: This may be done by hijacking DNS queries and responding with malicious IP addresses. Command & Control communication: As part of lateral movement, after an initial compromise, DNS communications is abused to communicate with a C2 server. This typically involves making periodic DNS queries from a computer in the target network for a domain controlled by the adversary. The responses contain encoded messages that may be used to perform unauthorized actions in the target network. Network footprinting: Adversaries use DNS queries to build a map of the network. Attackers live off the terrain so developing a map is important to them. Data theft (exfiltration): Abuse of DNS to transfer data; this may be performed by tunneling other protocols like FTP, SSH through DNS queries and responses. Attackers make multiple DNS queries from a compromised computer to a domain owned by the adversary. DNS tunneling can also be used for executing commands and transferring malware into the target network. Reference: https://www.netsurion.com/articles/5-types-of-dns-attacks-and-how-to-detect-them Command & Control communication: As part of lateral movement, after an initial compromise, DNS communications is abused to communicate with a C2 server. This typically involves making periodic DNS queries from a computer in the target network for a domain controlled by the adversary. The responses contain encoded messages that may be used to perform unauthorized actions in the target network.
Network footprinting: Adversaries use DNS queries to build a map of the network. Attackers live off the terrain so developing a map is important to them.
Data theft (exfiltration): Abuse of DNS to transfer data; this may be performed by tunneling other protocols like FTP, SSH through DNS queries and responses. Attackers make multiple DNS queries from a compromised computer to a domain owned by the adversary. DNS tunneling can also be used for executing commands and transferring malware into the target network.
Malware installation: This may be done by hijacking DNS queries and responding with malicious IP addresses. Command & Control communication: As part of lateral movement, after an initial compromise, DNS communications is abused to communicate with a C2 server. This typically involves making periodic DNS queries from a computer in the target network for a domain controlled by the adversary. The responses contain encoded messages that may be used to perform unauthorized actions in the target network. Network footprinting: Adversaries use DNS queries to build a map of the network. Attackers live off the terrain so developing a map is important to them. Data theft (exfiltration): Abuse of DNS to transfer data; this may be performed by tunneling other protocols like FTP, SSH through DNS queries and responses. Attackers make multiple DNS queries from a compromised computer to a domain owned by the adversary. DNS tunneling can also be used for executing commands and transferring malware into the target network. Reference: https://www.netsurion.com/articles/5-types-of-dns-attacks-and-how-to-detect-them

350-701 Exam Question 164

A Cisco FTD engineer is creating a new IKEv2 policy called s2s00123456789 for their organization to allow for additional protocols to terminate network devices with. They currently only have one policy established and need the new policy to be a backup in case some devices cannot support the stronger algorithms listed in the primary policy. What should be done in order to support this?

A.Change the integrity algorithms to SHA* to support all SHA algorithms in the primary policy

B.Make the priority for the new policy 5 and the primary policy 1

C.Change the encryption to AES* to support all AES algorithms in the primary policy

D.Make the priority for the primary policy 10 and the new policy 1

350-701 Exam Question 165

How does DNS Tunneling exfiltrate data?

A.An attacker registers a domain that a client connects to based on DNS records and sends malware through that connection.

B.An attacker opens a reverse DNS shell to get into the client's system and install malware on it.

C.An attacker uses a non-standard DNS port to gain access to the organization's DNS servers in order to poison the resolutions.

D.An attacker sends an email to the target with hidden DNS resolvers in it to redirect them to a malicious domain.

Other Version: 1291Cisco.350-701.v2025-09-03.q218; 2219Cisco.350-701.v2024-07-01.q407; 2139Cisco.350-701.v2023-09-13.q261; 2047Cisco.350-701.v2023-08-25.q253; 2360Cisco.350-701.v2023-03-16.q221; 4690Cisco.350-701.v2022-06-21.q171; 108Cisco.Bootcamppdf.350-701.v2022-06-07.by.eunice.229q.pdf; 6037Cisco.350-701.v2022-03-25.q229; 6455Cisco.350-701.v2021-10-14.q244; 63Cisco.Practicevce.350-701.v2021-07-29.by.hugo.199q.pdf

Latest Upload: 128F5.F5CAB5.v2026-06-22.q29; 129Juniper.JN0-650.v2026-06-22.q31; 151Salesforce.Plat-Admn-201.v2026-06-22.q72; 163VMware.3V0-21.25.v2026-06-20.q29; 169Microsoft.AB-731.v2026-06-19.q23; 323IIA.IIA-CIA-Part2.v2026-06-19.q308; 206DAMA.MD-1220.v2026-06-19.q66; 230ISTQB.CT-AI.v2026-06-18.q68; 376IIA.IIA-CIA-Part3.v2026-06-17.q220; 232WGU.Introduction-to-IT.v2026-06-17.q67

350-701 Exam Question 161

350-701 Exam Question 162

350-701 Exam Question 163

350-701 Exam Question 164

350-701 Exam Question 165

Download PDF File