200-201 Free Practice Test

What is threat hunting?

1. A. Managing a vulnerability assessment report to mitigate potential threats.
2. B. Focusing on proactively detecting possible signs of intrusion and compromise.
3. C. Pursuing competitors and adversaries to infiltrate their system to acquire intelligence data.
4. D. Attempting to deliberately disrupt servers by altering their availability

Correct Answer: B

What is the difference between vulnerability and risk?

1. A. A vulnerability is a sum of possible malicious entry points, and a risk represents the possibility of the unauthorized entry itself.
2. B. A risk is a potential threat that an exploit applies to, and a vulnerability represents the threat itself
3. C. A vulnerability represents a flaw in a security that can be exploited, and the risk is the potential damage it might cause.
4. D. A risk is potential threat that adversaries use to infiltrate the network, and a vulnerability is an exploit

Correct Answer: C

Which HTTP header field is used in forensics to identify the type of browser used?

1. A. referrer
2. B. host
3. C. user-agent
4. D. accept-language

Correct Answer: C
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:12.0) Gecko/20100101 Firefox/12.0 In computing, a user agent is any software, acting on behalf of a user, which "retrieves, renders and facilitates end-user interaction with Web content".[1] A user agent is therefore a special kind of software agent. https://en.wikipedia.org/wiki/User_agent#User_agent_identification
A user agent is a computer program representing a person, for example, a browser in a Web context. https://developer.mozilla.org/en-US/docs/Glossary/User_agent

What is a difference between tampered and untampered disk images?

1. A. Tampered images have the same stored and computed hash.
2. B. Untampered images are deliberately altered to preserve as evidence.
3. C. Tampered images are used as evidence.
4. D. Untampered images are used for forensic investigations.

Correct Answer: D
The disk image must be intact for forensics analysis. As a cybersecurity professional, you may be given the task of capturing an image of a disk in a forensic manner. Imagine a security incident has occurred on a system and you are required to perform some forensic investigation to determine who and what caused the attack. Additionally, you want to ensure the data that was captured is not tampered with or modified during the creation of a disk image process. Ref: Cisco Certified CyberOps Associate 200-201 Certification Guide

One of the objectives of information security is to protect the CIA of information and systems. What does CIA mean in this context?

1. A. confidentiality, identity, and authorization
2. B. confidentiality, integrity, and authorization
3. C. confidentiality, identity, and availability
4. D. confidentiality, integrity, and availability

Correct Answer: D