Free Cisco 200-201 Exam Questions

Become Cisco Certified with updated 200-201 exam questions and correct answers

Page: 1 / 96

Total 480 Questions | Updated On: Apr 14, 2026

Add To Cart

Question 1

Refer to the exhibit.

What is the potential threat identified in this Stealthwatch dashboard?

A : A policy violation is active for host 10.10.101.24.

B : A host on the network is sending a DDoS attack to another inside host.

C : There are two active data exfiltration alerts.

D : A policy violation is active for host 10.201.3.149.

Answer: C

Question 2

Why is encryption challenging to security monitoring?

A : cryption analysis is used by attackers to monitor VPN tunnels.

B : cryption is used by threat actors as a method of evasion and obfuscation.

C : cryption introduces additional processing requirements by the CPU.

D : cryption introduces larger packet sizes to analyze and store.

Answer: B

Question 3

What is a scareware attack?

A : inserting malicious code that causes popup windows with flashing colors

B : overwhelming a targeted website with fake traffic

C : gaining access to your computer and encrypting data stored on it

D : using the spoofed email addresses to trick people into providing login credentials

Answer: A

Question 4

Refer to the exhibit.An analyst receives an IDS alert pertaining to a possible data exfiltration attempt. An additional set of logs iscollected from different systems and analyzed. Which type of evidence do the logs provide in relation to theprimary alert from the IDS?

A : corroborative evidence

B : primary evidence

C : circumstantial evidence

D : secondary evidence

Answer: A

Question 5

Which HTTP header field is used in forensics to identify the type of browser used?

A : ferrer

B : t

C : er-agent

D : cept-language

Answer: C

Page: 1 / 96

Total 480 Questions | Updated On: Apr 14, 2026

Add To Cart