a software platform and network of P2P hosts that function as Internet routers

a rule created in order to match a signature of a known exploit

a way to share processors between network devices across the Internet

a type of Instant Messaging (IM) software used on the darknet

14. Which function is provided by the Sguil application?

It makes Snort-generated alerts readable and searchable.

It reports conversations between hosts on the network.

It detects potential network intrusions.

It prevents malware from attacking a host.

15. Which statement describes a Cisco Web Security Appliance (WSA)?

It protects a web server by preventing security threats from accessing the server.

It provides high performance web services.

It acts as an SSL-based VPN server for an enterprise.

16. Which statement describes session data in security logs?

It is a record of a conversation between network hosts.

It can be used to describe or predict network behavior.

It shows the result of network sessions.

It reports detailed network activities between network hosts.

18. How does a web proxy device provide data loss prevention (DLP) for an enterprise?

by scanning and logging outgoing traffic

by inspecting incoming traffic for potential exploits

by checking the reputation of external web servers

19. Which information can be provided by the Cisco NetFlow utility?

peak usage times and traffic routing

security and user account restrictions

source and destination UDP port mapping

20. Which statement describes statistical data in network security monitoring processes?

It is created through an analysis of other forms of network data.

It contains conversations between network hosts.

It shows the results of network activities between network hosts.

It lists each alert message along with statistical information.

22. Which two tools have a GUI interface and can be used to view and analyze full packet captures? (Choose two.)

Cisco Prime Network Analysis Module

26. Which technique would a threat actor use to disguise traces of an ongoing exploit?

Corrupt time information by attacking the NTP infrastructure.

Create an invisible iFrame on a web page.

Encapsulate other protocols within DNS to evade security measures.

Use SSL to encapsulate malware.

27. A system administrator runs a file scan utility on a Windows PC and notices a file lsass.exe in the Program Files directory. What should the administrator do?

Delete the file because it is probably malware.

Move it to Program Files (x86) because it is a 32bit application.

Uninstall the lsass application because it is a legacy application and no longer required by Windows.

Open the Task Manager, right-click on the lsass process and choose End Task .

28. Refer to the exhibit. A network administrator is viewing some output on the Netflow collector. What can be determined from the output of the traffic flow shown?

This is a UDP DNS response to a client machine.

This is a UDP DNS request to a DNS server.

This is a TCP DNS request to a DNS server.

This is a TCP DNS response to a client machine.

30. What does it indicate if the timestamp in the HEADER section of a syslog message is preceded by a period or asterisk symbol?

There is a problem associated with NTP.

The timestamp represents the round trip duration value.

The syslog message should be treated with high priority.

The syslog message indicates the time an email is received.

CyberOps Modules 24-25

Authored by Logan Prewitt

Computers

12th Grade

Used 5+ times

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

Content View

Student View

35 questions

Show all answers

MULTIPLE CHOICE QUESTION

2 mins • 1 pt

1. Which ICMP message type should be stopped inbound?

source quench

echo-reply

echo

unreachable

MULTIPLE CHOICE QUESTION

2 mins • 1 pt

2. How can IMAP be a security threat to a company?

Someone inadvertently clicks on a hidden iFrame.

Encrypted data is decrypted.

An email can be used to bring malware to a host.

It can be used to encode stolen data and send to a threat actor.

MULTIPLE SELECT QUESTION

2 mins • 1 pt

3. Which two technologies are primarily used on peer-to-peer networks? (Choose two.)

Bitcoin

BitTorrent

Wireshark

Darknet

Snort

MULTIPLE CHOICE QUESTION

2 mins • 1 pt

4. Which protocol is exploited by cybercriminals who create malicious iFrames?

HTTP

DHCP

MULTIPLE CHOICE QUESTION

2 mins • 1 pt

5. Which method is used by some malware to transfer files from infected hosts to a threat actor host?

UDP infiltration

ICMP tunneling

HTTPS traffic encryption

iFrame injection

MULTIPLE CHOICE QUESTION

2 mins • 1 pt

6. Why does HTTPS technology add complexity to network security monitoring?

HTTPS dynamically changes the port number on the web server.

HTTPS uses tunneling technology for confidentiality.

HTTPS hides the true source IP address using NAT/PAT.

HTTPS conceals data traffic through end-to-end encryption.

MULTIPLE CHOICE QUESTION

2 mins • 1 pt

7. Which approach is intended to prevent exploits that target syslog?

Use a Linux-based server.

Use syslog-ng.

Create an ACL that permits only TCP traffic to the syslog server.

Use a VPN between a syslog client and the syslog server.

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

40 questions

PHP Programming - Assessment

Quiz

•

9th - 12th Grade

40 questions

PAS MAPEL AIJ KELAS XII TKJ

Quiz

•

12th Grade

30 questions

D&T Challenge 1

Quiz

•

9th - 12th Grade

40 questions

[SMP-IX] ASAS 2024 Ganjil

Quiz

•

9th Grade - University

40 questions

PRE TEST_OS_MIDTERMS

Quiz

•

12th Grade

35 questions

Latihan SAS Gasal Informatika TA 23/24

Quiz

•

9th - 12th Grade

31 questions

Simulasi Digital

Quiz

•

9th - 12th Grade

30 questions

REDES I-Tipo de redes y topología 2024

Quiz

•

1st - 12th Grade

Popular Resources on Wayground

15 questions

Fractions on a Number Line

Quiz

•

3rd Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

54 questions

Analyzing Line Graphs & Tables

Quiz

•

4th Grade

$fractions$

22 questions

fractions

Quiz

•

3rd Grade

20 questions

Main Idea and Details

Quiz

•

5th Grade

20 questions

Context Clues

Quiz

•

6th Grade

15 questions

Equivalent Fractions

Quiz

•

4th Grade

Discover more resources for Computers

18 questions

[AP CSP] JavaScript Programming Lesson 2025-2026

Lesson

•

9th - 12th Grade

57 questions

[AP CSP] Unit 5 Review: Internet & Cybersecurity

Quiz

•

9th - 12th Grade

CyberOps Modules 24-25

1. Which ICMP message type should be stopped inbound?

2. How can IMAP be a security threat to a company?

3. Which two technologies are primarily used on peer-to-peer networks? (Choose two.)

4. Which protocol is exploited by cybercriminals who create malicious iFrames?

5. Which method is used by some malware to transfer files from infected hosts to a threat actor host?

6. Why does HTTPS technology add complexity to network security monitoring?

7. Which approach is intended to prevent exploits that target syslog?

8. Which type of attack is carried out by threat actors against a network to determine which IP addresses, protocols, and ports are allowed by ACLs?

9. Which two application layer protocols manage the exchange of messages between a client with a web browser and a remote web server? (Choose two.)

10. What is Tor?

Access all questions and much more by creating a free account

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Computers