Free 350-201 Exam Braindumps

A payroll administrator noticed unexpected changes within a piece of software and reported the incident to the incident response team. Which actions should be taken at this step in the incident response workflow?

1. A. Classify the criticality of the information, research the attacker’s motives, and identify missing patches
2. B. Determine the damage to the business, extract reports, and save evidence according to a chain of custody
3. C. Classify the attack vector, understand the scope of the event, and identify the vulnerabilities being exploited
4. D. Determine the attack surface, evaluate the risks involved, and communicate the incident according to the escalation plan

Correct Answer: B

Which command does an engineer use to set read/write/execute access on a folder for everyone who reaches the resource?

1. A. chmod 666
2. B. chmod 774
3. C. chmod 775
4. D. chmod 777

Correct Answer: D

Drag and drop the type of attacks from the left onto the cyber kill chain stages at which the attacks are seen on the right.

Solution:


Does this meet the goal?

1. A. Yes
2. B. No

Correct Answer: A

Refer to the exhibit.

What results from this script?

1. A. Seeds for existing domains are checked
2. B. A search is conducted for additional seeds
3. C. Domains are compared to seed rules
4. D. A list of domains as seeds is blocked

Correct Answer: B

An organization had several cyberattacks over the last 6 months and has tasked an engineer with looking for patterns or trends that will help the organization anticipate future attacks and mitigate them. Which data analytic technique should the engineer use to accomplish this task?

1. A. diagnostic
2. B. qualitative
3. C. predictive
4. D. statistical

Correct Answer: C