312-38 Exam Dumps – Reliable Way to Pass and Get Certified

1. How is the chip-level security of an loT device achieved?

2. Elden is working as a network administrator at an IT company. His organization opted for a virtualization technique in which the guest OS is aware of the virtual environment in which it is running and communicates with the host machines for requesting resources. Identify the virtualization technique implemented by Elden’s organization.

3. Which firewall technology can filler application-specific commands such as CET and POST requests?

4. Emmanuel works as a Windows system administrator at an MNC. He uses PowerShell to enforce the script execution policy. He wants to allow the execution of the scripts that are signed by a trusted

publisher.

Which of the following script execution policy setting this?

5. Which firewall technology can be implemented in all (application, session, transport, network, and presentation) layers of the OSl model?

6. A stateful multilayer inspection firewall combines the aspects of Application level gateway, Circuit level gateway and Packet filtering firewall.

On which layers of the OSI model, does the Stateful multilayer inspection firewall works?

7. The bank where you work has 600 windows computers and 400 Red Hat computers which primarily serve as bank teller consoles. You have created a plan and deployed all the patches to the Windows computers and you are now working on updating the Red Hat computers.

What command should you run on the network to update the Red Hat computers, download the security package, force the package installation, and update all currently installed packages?

8. Which authorization lets users access a requested resource on behalf of others?

9. Chris is a senior network administrator. Chris wants to measure the Key Risk Indicator (KRI) to assess the organization.

Why is Chris calculating the KRI for his organization? It helps Chris to:

10. What is the correct order of activities that a IDS is supposed to attempt in order to detect an intrusion?

11. The GMT enterprise is working on their internet and web usage policies. GMT would like to control internet bandwidth consumption by employees.

Which group of policies would this belong to?

12. John has implemented ________ in the network to restrict the limit of public IP addresses in his organization and to enhance the firewall filtering technique.

13. An insider in Hexagon, a leading IT company in USA, was testing a packet crafting tool. This tool generated a lot of malformed TCP/IP packets which crashed the main server’s operating system leading

to restricting the employees’ accesses.

Which attack did the insider use in the above situation?

14. Kyle is an IT consultant working on a contract for a large energy company in Houston. Kyle was hired on to do contract work three weeks ago so the company could prepare for an external IT security audit. With suggestions from upper management, Kyle has installed a network-based IDS system. This system checks for abnormal behavior and patterns found in network traffic that appear to be dissimilar from the traffic normally recorded by the IDS.

What type of detection is this network-based IDS system using?

15. Which encryption algorithm is used by WPA3 encryption?

16. Which mobile-use approach allows an organization’s employees to use devices that they are comfortable with and best fits their preferences and work purposes?

17. David, a network and system admin, encrypted all the files in a Windows system that supports NTFS file system using Encrypted File Systems (EFS). He then backed up the same files into another Windows system that supports FAT file system. Later, he found that the backup files were not encrypted.

What could be the reason for this?

18. Which of the following is consumed into SIEM solutions to take control of chaos, gain in-depth knowledge of threats, eliminate false positives, and implement proactive intelligence-driven defense?

19. Smith is an IT technician that has been appointed to his company's network vulnerability assessment team. He is the only IT employee on the team. The other team members include employees from Accounting, Management, Shipping, and Marketing. Smith and the team members are having their first meeting to discuss how they will proceed.

What is the first step they should do to create the network vulnerability assessment plan?

20. Bryson is the IT manager and sole IT employee working for a federal agency in California. The agency was just given a grant and was able to hire on 30 more employees for a new extended project. Because of this,

Bryson has hired on two more IT employees to train up and work. Both of his new hires are straight out of college and do not have any practical IT experience. Bryson has spent the last two weeks teaching the new employees the basics of computers, networking, troubleshooting techniques etc. To see how these two new hires are doing, he asks them at what layer of the OSI model do Network Interface Cards (NIC) work on.

What should the new employees answer?

21. Under which of the following acts can an international financial institution be prosecuted if it fails to maintain the privacy of its customer’s information?

22. According to the company's security policy, all access to any network resources must use Windows Active Directory Authentication. A Linux server was recently installed to run virtual servers and it is not using Windows Authentication.

What needs to happen to force this server to use Windows Authentication?

23. Which among the following options represents professional hackers with an aim of attacking systems for profit?

24. Your company is planning to use an uninterruptible power supply (UPS) to avoid damage from power fluctuations. As a network administrator, you need to suggest an appropriate UPS solution suitable for specific resources or conditions.

Match the type of UPS with the use and advantage:

25. 1.Management decides to implement a risk management system to reduce and maintain the organization's risk at an acceptable level.

Which of the following is the correct order in the risk management phase?

26. Which policies exist only on AWS IAM identity (user, group, or role)?

27. Katie has implemented the RAID level that split data into blocks and evenly write the data to multiple hard drives but does not provide data redundancy. This type of RAID level requires a minimum of________in order to setup.

28. _______________ is a structured and continuous process which integrates information security and risk management activities into the system development life cycle (SDLC).

29. Based on which of the following registry key, the Windows Event log audit configurations are recorded?

30. The risk assessment team in Southern California has estimated that the probability of an incident that has potential to impact almost 80% of the bank's business is very high.

How should this risk be categorized in the risk matrix?

31. A VPN Concentrator acts as a bidirectional tunnel endpoint among host machines.

What are the other f unction(s) of the device? (Select all that apply)

32. Michelle is a network security administrator working at a multinational company. She wants to provide secure access to corporate data (documents, spreadsheets, email, schedules, presentations, and other enterprise data) on mobile devices across organizations networks without being slowed down and also wants to enable easy and secure sharing of information between devices within an enterprise.

Based on the above mentioned requirements, which among the following solution should Michelle implement?

33. Which command is used to change the permissions of a file or directory?

34. John, the network administrator and he wants to enable the NetFlow feature in Cisco routers to collect and monitor the IP network traffic passing through the router.

Which command will John use to enable NetFlow on an interface?

35. Bankofamerica Enterprise is working on an internet and usage policy in a way to control the internet demand.

What group of policy does this belong to?

36. Which type of firewall consists of three interfaces and allows further subdivision of the systems based on specific security objectives of the organization?

37. Identity the method involved in purging technique of data destruction.

38. The network administrator wants to strengthen physical security in the organization. Specifically, to implement a solution stopping people from entering certain restricted zones without proper credentials.

Which of following physical security measures should the administrator use?

39. Which of the following is not part of the recommended first response steps for network defenders?

40. -----------is a group of broadband wireless communications standards for Metropolitan Area Networks (MANs)

41. What is composite signature-based analysis?

42. Harry has sued the company claiming they made his personal information public on a social networking site in the United States. The company denies the allegations and consulted a/an ______for legal advice to defend them against this allegation.

43. Which of the following Wireshark filters allows an administrator to detect SYN/FIN DDoS attempt on the network?

44. Which of the following statement holds true in terms of containers?

45. Syslog and SNMP are the two main _______ protocols through which log records are transferred.

46. Harry has successfully completed the vulnerability scanning process and found serious vulnerabilities exist in the organization's network. Identify the vulnerability management phases through which he will proceed to ensure all the detected vulnerabilities are addressed and eradicated. (Select all that apply)

47. If Myron, head of network defense at Cyberdyne, wants to change the default password policy settings on the company’s Linux systems, which directory should he access?

48. Rosa is working as a network defender at Linda Systems. Recently, the company migrated from Windows to MacOS.

Rosa wants to view the security related logs of her system, where con she find these logs?

49. How does Windows’ in-built security component, AppLocker, whitelist applications?

50. The network administrator wants to strengthen physical security in the organization. Specifically, to implement a solution stopping people from entering certain restricted zones without proper credentials.

Which of following physical security measures should the administrator use?

51. A CCTV camera, which can be accessed on the smartphone from a remote location, is an example of _____

52. Which among the following tools can help in identifying IoEs to evaluate human attack surface?

53. Which filter to locate unusual ICMP request an Analyst can use in order to detect a ICMP probes from the attacker to a target OS looking for the response to perform ICMP fingerprinting?

54. Lyle is the IT director for a medium-sized food service supply company in Nebraska. Lyle's company employs over 300 workers, half of which use computers. He recently came back from a security training seminar on logical security. He now wants to ensure his company is as secure as possible. Lyle has many network nodes and workstation nodes across the network. He does not have much time for implementing a network-wide solution. He is primarily concerned about preventing any external attacks on the network by using a solution that can drop packets if they are found to be malicious. Lyle also wants this solution to be easy to implement and be network-wide.

What type of solution would be best for Lyle?

55. Eric is receiving complaints from employees that their systems are very slow and experiencing odd issues including restarting automatically and frequent system hangs. Upon investigating, he is convinced the systems are infected with a virus that forces systems to shut down automatically after period of time.

What type of security incident are the employees a victim of?

56. Identify the network topology where each computer acts as a repeater and the data passes from one computer to the other in a single direction until it reaches the destination.

57. Which authentication technique involves mathematical pattern-recognition of the colored part of the eye behind the cornea?

58. A network designer needs to submit a proposal for a company, which has just published a web portal for its clients on the internet. Such a server needs to be isolated from the internal network, placing itself in a DMZ. Faced with this need, the designer will present a proposal for a firewall with three interfaces, one for the internet network, another for the DMZ server farm and another for the internal network.

What kind of topology will the designer propose?

59. Brendan wants to implement a hardware based RAID system in his network. He is thinking of choosing a suitable RAM type for the architectural setup in the system. The type he is interested in provides access times of up to 20 ns.

Which type of RAM will he select for his RAID system?

60. As a network administrator, you have implemented WPA2 encryption in your corporate wireless network. The WPA2's _________integrity check mechanism provides security against a replay attack

61. What can be the possible number of IP addresses that can be assigned to the hosts present in a subnet having 255.255.255.224 subnet mask?

62. The Circuit-level gateway firewall technology functions at which of the following OSI layer?

63. Which technique is used in RAID level 0 where the data is split into blocks and written evenly across multiple disks?

64. Which of the following attack signature analysis techniques are implemented to examine the header information and conclude that a packet has been altered?

65. Blake is working on the company's updated disaster and business continuity plan. The last section of the plan covers computer and data incidence response. Blake is outlining the level of severity for each type of incident in the plan.

Unsuccessful scans and probes are at what severity level?

66. What represents the ability of an organization to respond under emergency in order to minimize the damage to its brand name, business operation, and profit?

67. Which of the Windows security component is responsible for controlling access of a user to Windows resources?

68. To secure his company’s network, Tim the network admin, installed a security device that inspected all inbound and outbound network traffic for suspicious patterns. The device was configured to alert him if it found any such suspicious activity.

Identify the type of network security device installed by Tim?

69. Disaster Recovery is a _________.

70. Identify the spread spectrum technique that multiplies the original data signal with a pseudo random noise spreading code.

71. Oliver is a Linux security administrator at an MNC. An employee named Alice has resigned from his organization and Oliver wants to disable this user in Ubuntu.

Which of the following commands can be used to accomplish this?

72. A company has the right to monitor the activities of their employees on different information systems according to the _______policy.

73. An organization’s web server was recently compromised triggering its admin team into action to defend the network. The admin team wants to place the web server in such a way that, even if it is attacked, the other network resources will be unavailable to the attacker. Moreover, the network monitoring will easily detect the future attacks.

How can the admin team implement this plan?

74. Which of the following things need to be identified during attack surface visualization?

75. Which antenna's characteristic refer to the calculation of radiated in a particular direction.

It is generally the ratio of radiation intensity in a given direction to the average radiation intensity?

76. Management asked their network administrator to suggest an appropriate backup medium for their backup plan that best suits their organization's need.

Which of the following factors will the administrator consider when deciding on the appropriate backup medium?

77. To provide optimum security while enabling safe/necessary services, blocking known dangerous services, and making employees accountable for their online activity, what Internet Access policy would Brian, the network administrator, have to choose?

78. Which of the following interfaces uses hot plugging technique to replace computer components without the need to shut down the system?

79. Delta IT solutions suffered a substantial data loss translating into a huge monetary loss for them. While investigation, the network admin analyzed all the packets and traffic transmitted across the network and identified that some user, within the organization, had leaked the data.

Which of the following devices could have helped the network admin reach this conclusion?

80. Which type of modulation technique is used in local area wireless networks (LAWNs)?

81. Which of the following connects the SDN application layer and SDN controller and allows communication between the network services and business applications?

82. Ross manages 30 employees and only 25 computers in the organization. The network the company uses is a peer-to-peer. Ross configures access control measures allowing the employees to set their own control measures for their files and folders.

Which access control did Ross implement?

83. Daniel is giving training on designing and implementing a security policy in the organization. He is explaining the hierarchy of the security policy which demonstrates how policies are drafted, designed and implemented.

What is the correct hierarchy for a security policy implementation?

84. Maximus Tech Is a multinational company that uses Cisco ASA Firewalls for their systems. Jason is the one of the members of the team that checks the logs at Maximus Tech. As a part of his job. he is going through me logs and he came across a firewall log that looks like this:

May 06 2018 21:27:27 asa 1: % ASA -6-11008: User enable_16' executed the 'configure term' command

Based on the security level mentioned in the log, what did Jason understand about the description of this message?

85. Which of the following provides a set of voluntary recommended cyber security features to include in network-capable loT devices?

86. Which IEEE standard does wireless network use?

87. Identify the type of event that is recorded when an application driver loads successfully in Windows.

88. A popular e-commerce company has recently received a lot of complaints from its customers. Most of the complaints are about the customers being redirected to some other website when trying to access the e-com site, leading to all their systems being compromised and corrupted. Upon investigation, the network admin of the firm discovered that some adversary had manipulated the company’s IP address in the domain name server’s cache.

What is such an attack called?

89. In Public Key Infrastructure (PKI), which authority is responsible for issuing and verifying the certificates?

90. The--------------protocol works in the network layer and is responsible for handling the error codes during the delivery of packets. This protocol is also responsible for providing communication in the TCP/IP stack.

91. Which of the following defines the extent to which an interruption affects normal business operations and the amount of revenue lost due to that interruption?

92. Which of the following provides enhanced password protection, secured loT connections, and encompasses stronger encryption techniques?

93. Patrick wants to change the file permission of a file with permission value 755 to 744. He used a Linux command chmod [permission Value] [File Name] to make these changes.

What will be the change in the file access?

94. Which type of risk treatment process Includes not allowing the use of laptops in an organization to ensure its security?

95. Should not be expensive.

The management team asks Nancy to research and suggest the appropriate RAID level that best suits their requirements.

What RAID level will she suggest?

96. Cindy is the network security administrator for her company. She just got back from a security conference in Las Vegas where they talked about all kinds of old and new security threats; many of which she did not know of. She is worried about the current security state of her company's network so she decides to start scanning the network from an external IP address. To see how some of the hosts on her network react, she sends out SYN packets to an IP range. A number of IPs responds with a SYN/ACK response. Before the connection is established, she sends RST packets to those hosts to stop the session. She has done this to see how her intrusion detection system will log the traffic.

What type of scan is Cindy attempting here?

97. John has successfully remediated the vulnerability of an internal application that could have caused a threat to the network. He is scanning the application for the existence of a remediated vulnerability, this process is called a________and it has to adhere to the_________

98. Who is responsible for executing the policies and plans required for supporting the information technology and computer systems of an organization?

99. Which of the following entities is responsible for cloud security?

100. Which RAID level system provides very good data performance but does not offer fault tolerance and data redundancy?

101. Which of the following filters car be applied to detect an ICMP ping sweep attempt using Wireshark?

102. Castle-and-Moat model