Free Cisco 300-215 Exam Questions

Become Cisco Certified with updated 300-215 exam questions and correct answers

Page: 1 / 24

Total 117 Questions | Updated On: Dec 16, 2020

Add To Cart

Question 1

Refer to the exhibit.Which two actions should be taken based on the intelligence information? (Choose two.)

A : Block network access to all .shop domains

B : Add a SIEM rule to alert on connections to identified domains.

C : Use the DNS server to block hole all .shop requests.

D : Block network access to identified domains.

E : Route traffic from identified domains to block hole.

Answer: B,D

Question 2

A : Evaluate the artifacts in Cisco Secure Malware Analytics.

B : Evaluate the file activity in Cisco Umbrella.

C : Analyze the registry activity section in Cisco Umbrella.

D : Analyze the activity paths in Cisco Secure Malware Analytics.

Answer: A

Question 3

Refer to the exhibit.What do these artifacts indicate?

A : An executable file is requesting an application download.

B : A malicious file is redirecting users to different domains.

C : The MD5 of a file is identified as a virus and is being blocked.

D : A forged DNS request is forwarding users to malicious websites.

Answer: B

Question 4

Refer to the exhibit.What do these artifacts indicate?

A : An executable file is requesting an application download.

B : A malicious file is redirecting users to different domains.

C : The MD5 of a file is identified as a virus and is being blocked.

D : A forged DNS request is forwarding users to malicious websites.

Answer: B

Question 5

What are YARA rules based upon?

A : binary patterns

B : HTML code

C : network artifacts

D : IP addresses

Answer: A

Page: 1 / 24

Total 117 Questions | Updated On: Dec 16, 2020

Add To Cart