Refer to the exhibit.

An engineer received a ticket about a slowed-down web application. The engineer runs the #netstat -an command. How must the engineer interpret the results?

• A.The web application is receiving a common, legitimate traffic
• B.The engineer must gather more data.
• C.The web application server is under a denial-of-service attack.
• D.The server is under a man-in-the-middle attack between the web application and its database

Comment: *

Name: *

Email: *

Verification: *

Which security principle is violated by running all processes as root or administrator?

• A.principle of least privilege
• B.role-based access control
• C.separation of duties
• D.trusted computing base

Comment: *

Name: *

Email: *

Verification: *

Refer to the exhibit.

What is occurring in this network?

• A.ARP cache poisoning
• B.MAC address table overflow
• C.DNS cache poisoning
• D.MAC flooding attack

Comment: *

Name: *

Email: *

Verification: *

Which two elements of the incident response process are stated in NIST Special Publication 800-61 r2? (Choose two.)

• A.detection and analysis
• B.vulnerability management
• C.risk assessment
• D.vulnerability scoring
• E.post-incident activity

Comment: *

Name: *

Email: *

Verification: *

Refer to the exhibit. What information is depicted?

• A.IIS data
• B.NetFlow data
• C.network discovery event
• D.IPS event data

Comment: *

Name: *

Email: *

Verification: *