Cisco Conducting Threat Hunting and Defending using Cisco Technologies for CyberOps - 300-220 Exam Practice Test

A. Domain names

B. IP addresses

C. TTPs (Tactics, Techniques, and Procedures)

D. Hash values

A. HTML

B. Python

C. Java

D. C++

A. Targeted spear-phishing emails

B. Posting threats on social media

C. Use of widely available exploit kits

D. Scanning the internet for vulnerable servers

A. Decreasing the frequency of security audits

B. Encrypting sensitive data both at rest and in transit

C. Reducing the complexity of network passwords

D. Disabling all firewall rules to prevent false positives

A. Overly complex network designs

B. Not adhering to security best practices

C. Regularly changing passwords

D. Using strong encryption methods

A. Tailoring the message to the audience's level of understanding

B. Using complex technical jargon to impress stakeholders

C. Focusing solely on high-level summaries without details

D. Presenting all data without analysis or recommendations

A. The language of comments in the malware code

B. Unique identifiers in the malware payload

C. Consistencies in TTPs with previous attacks

D. The sophistication of the attack vector

A. A list of favorite employee lunch spots

B. Steps for containment, eradication, and recovery

C. The CEO's contact information

D. Corporate holiday schedules

A. Asset management

B. Predictive analytics

C. Hardware encryption

D. DNS monitoring

A. Traffic data patterns

B. Wi-Fi connection strength

C. The size of email attachments

D. Antivirus update logs