Online Access Free CFR-210 Exam Questions

Which of the following technologies is used as mitigation to XSS attacks?

• A.Proxy filtering
• B.Intrusion detection
• C.Web application firewall
• D.Intrusion prevention

A malware analyst has been assigned the task of reverse engineering malicious code. To conduct the
analysis safely, which of the following could the analyst implement?

• A.VLAN
• B.Sandbox
• C.Honeypot
• D.Lock box

An attack was performed on a company's web server, disabling the company's website. The incident
response team's investigation produced the following:
1 . Presence of malicious code installed on employees' workstations.
2 . Excessive UDP datagrams sent to a single address.
3 . Web server received excessive UDP datagrams from multiple internal hosts.
4 . Network experienced high traffic after 3:00pm .
5 . Employee workstations sent large traffic bursts when employees accessed the internal timecard
application.
Which of the following BEST describes the attack tool used to perform the attack?

• A.Nessus
• B.Logic bomb
• C.Metasploit
• D.Keylogger

A hacker's end goal is to target the Chief Financial Officer (CFO) of a bank. Which of the following
describes this social engineering tactic?

• A.Vishing
• B.Whaling
• C.Pharming
• D.Spear phishing

Which of the following describes pivoting?

• A.Accessing another system from a compromised system
• B.Performing IP packet inspection
• C.Copying captured data to a hacker's system
• D.Generating excessive network traffic