CS0-003 Exam Question 171

After an upgrade to a new EDR, a security analyst received reports that several endpoints were not communicating with the SaaS provider to receive critical threat signatures. To comply with the incident response playbook, the security analyst was required to validate connectivity to ensure communications. The security analyst ran a command that provided the following output:
* ComputerName: comptia007
* RemotePort: 443
* InterfaceAlias: Ethernet 3
* TcpTestSucceeded: False
Which of the following did the analyst use to ensure connectivity?
  • CS0-003 Exam Question 172

    A security analyst needs to provide evidence of regular vulnerability scanning on the company's network for an auditing process. Which of the following is an example of a tool that can produce such evidence?
  • CS0-003 Exam Question 173

    %77%77%77%2e%69%63%65%2d%70%74%69%63%2e%63%6f%6d
    Which of the following would most likely explain this behavior?
  • CS0-003 Exam Question 174

    A SOC receives several alerts indicating user accounts are connecting to the company's identity provider through non-secure communications. User credentials for accessing sensitive, business-critical systems could be exposed. Which of the following logs should the SOC use when determining malicious intent?
  • CS0-003 Exam Question 175

    A network security analyst for a large company noticed unusual network activity on a critical system. Which of the following tools should the analyst use to analyze network traffic to search for malicious activity?