200-201 Free Practice Test

Refer to the exhibit.

Which packet contains a file that is extractable within Wireshark?

1. A. 2317
2. B. 1986
3. C. 2318
4. D. 2542

Correct Answer: D

Which two elements of the incident response process are stated in NIST Special Publication 800-61 r2? (Choose two.)

1. A. detection and analysis
2. B. post-incident activity
3. C. vulnerability management
4. D. risk assessment
5. E. vulnerability scoring

Correct Answer: AB

Refer to the exhibit.

A company employee is connecting to mail google.com from an endpoint device. The website is loaded but with an error. What is occurring?

1. A. DNS hijacking attack
2. B. Endpoint local time is invalid.
3. C. Certificate is not in trusted roots.
4. D. man-m-the-middle attack

Correct Answer: C

A user received a malicious attachment but did not run it. Which category classifies the intrusion?

1. A. weaponization
2. B. reconnaissance
3. C. installation
4. D. delivery

Correct Answer: D

Which type of verification consists of using tools to compute the message digest of the original and copied data, then comparing the similarity of the digests?

1. A. evidence collection order
2. B. data integrity
3. C. data preservation
4. D. volatile data collection

Correct Answer: B