Free Cisco 300-215 Exam Questions

Question 1

A security team needs to prevent a remote code execution vulnerability. The vulnerability can be exploited only by sending '${ string in the HTTP request. WAF rule is blocking '${', but system engineers detect that attackers are executing commands on the host anyway. Which action should the security team recommend?

A : Enable URL decoding on WAF.

B : Block incoming web traffic.

C : Add two WAF rules to block 'S' and '{' characters separately.

D : Deploy antimalware solution.

Answer: A

Question 2

A : Evaluate the artifacts in Cisco Secure Malware Analytics.

B : Evaluate the file activity in Cisco Umbrella.

C : Analyze the registry activity section in Cisco Umbrella.

D : Analyze the activity paths in Cisco Secure Malware Analytics.

Answer: A

Question 3

A : Evaluate the artifacts in Cisco Secure Malware Analytics.

B : Evaluate the file activity in Cisco Umbrella.

C : Analyze the registry activity section in Cisco Umbrella.

D : Analyze the activity paths in Cisco Secure Malware Analytics.

Answer: A

Question 4

A security team needs to prevent a remote code execution vulnerability. The vulnerability can be exploited only by sending '${ string in the HTTP request. WAF rule is blocking '${', but system engineers detect that attackers are executing commands on the host anyway. Which action should the security team recommend?

A : Enable URL decoding on WAF.

B : Block incoming web traffic.

C : Add two WAF rules to block 'S' and '{' characters separately.

D : Deploy antimalware solution.

Answer: A

Question 5

What is the steganography anti-forensics technique?

A : hiding a section of a malicious file in unused areas of a file

B : changing the file header of a malicious file to another file type

C : sending malicious files over a public network by encapsulation

D : concealing malicious files in ordinary or unsuspecting places

Answer: D