Cisco 210-250 Exam Questions

Question 6 of 948

Which definition of a process in Windows is true?

running program

unit of execution that must be manually scheduled by the application

database that stores low-level settings for the OS and for certain applications

basic unit to which the operating system allocates processor time

Correct Answer: A

Question 7 of 948

Which tool is commonly used by threat actors on a webpage to take advantage of the software vulnerabilities of a system to spread malware?

exploit kit

root kit

vulnerability kit

script kiddie kit

Correct Answer: A

An exploit kit is a type of toolkit used by cybercriminals to exploit security holes in software applications, typically by hosting the kit on malicious websites or by injecting it into compromised, otherwise legitimate websites. When users visit these websites, the exploit kit automatically scans for software vulnerabilities and attempts to exploit them to deliver malicious payloads, such as malware. This makes exploit kits the correct answer for a tool used by threat actors on a webpage to exploit software vulnerabilities and spread malware.

Question 8 of 948

Which encryption algorithm is the strongest?

AES

CES

DES

3DES

Correct Answer: A

Question 9 of 948

In NetFlow records, which flags indicate that an HTTP connection was stopped by a security appliance, like a firewall, before it could be built fully?

ACK

SYN, ACK

RST

PSH, ACK

Correct Answer: C

Question 10 of 948

Which two tasks can be performed by analyzing the logs of a traditional stateful firewall? (Choose two.)

Confirm the timing of network connections differentiated by the TCP 5-tuple.

Audit the applications used within a social networking web site.

Determine the user IDs involved in an instant messaging exchange.

Map internal private IP addresses to dynamically translated external public IP addresses.

Identify the malware variant carried by an SMTP connection

Correct Answer: A, D