Cysa+2/4

What security control provides Windows administrators with an efficient way to manage system configuration settings across a large number of devices?

Which authentication protocol was designed by Cisco to provide authentication, authorization, and accounting services?

You are a cyber security analyst and have been asked to review the following packet of information:

23:12:23.154234 IP 172.18.10.3:25 > 192.168.10.45:3389 Flags [P.],

Seq 1834:1245, ack1, win 511, options [nop,nop],

TS val 263451334erc 482862734, length 125

After looking over the information on the packet, you discovered there is an unauthorized service running on the host.

What ACL should be implemented to prevent further access to the unauthorized service while maintaining full access to the approved services running on that host?

Based on some old SIEM alerts, you have been asked to perform some forensic analysis on a particular host. You have noticed that some SSL network connections are occurring over ports other than port 443. Additionally, the SIEM alerts state that copies of svchost.exe and cmd.exe have been found in the %TEMP% folder on the host, as well as showing that RDP connections have previously connected with an IP address that is external to the corporate intranet. What threat might you have uncovered during your analysis?

What is the proper threat classification for a security breach that employs brute-force methods to compromise, degrade, or destroy systems?

Jacob discovers a service running on one of the ports known as a registered port while running a port scanner. What does this tell him about the service?

What is NOT considered part of the Internet of Things?

TRUE or FALSE: Discovery scans provide organizations with an automated way to identify hosts on a network and build an asset inventory.

Which type of attacker is considered to be sophisticated, highly organized attackers who are typically sponsored by a nation-state?

What regulation protects the privacy of student educational records?