A cybersecurity analyst is conducting a security test to ensure that information regarding the web server is protected from disclosure. The cybersecurity analyst requested an HTML file from the web server, and the response came back as follows:

Which of the following actions should be taken to remediate this security issue?

An analyst wants to use a command line tool to identify open ports and running services on a host along
with the application that is associated with those services and port. Which of the following should the
analyst use?

Due to new regulations, a company has decided to institute an organizational vulnerability management program and assign the function to the security team. Which of the following frameworks would BEST support the program? (Select two.)

A security analyst is concerned that unauthorized users can access confidential data stored in the
production server environment. All workstations on a particular network segment have full access to any
server in production. Which of the following should be deployed in the production environment to prevent
unauthorized access? (Choose two.)

A security analyst is performing a forensic analysis on a machine that was the subject of some historic SIEM alerts. The analyst noticed some network connections utilizing SSL on non-common ports, copies of svchost.exe and cmd.exe in %TEMP% folder, and RDP files that had connected to external IPs. Which of the following threats has the security analyst uncovered?