An attacker exploits the logic validation mechanisms of an e-commerce website. He successfully purchases a product worth $100 for $10 by modifying the URL exchanged between the client and the server.
Original
URL: http://www.buyonline.com/product.aspx?profile=12
&debit=100
Modified URL: http://www.buyonline.com/product.aspx?profile=12
&debit=10
Identify the attack depicted in the above scenario.

• A.SQL Injection Attack
• B.Denial-of-Service Attack
• C.Session Fixation Attack
• D.Parameter Tampering Attack

Comment: *

Name: *

Email: *

Verification: *

An organization is implementing and deploying the SIEM with following capabilities.

What kind of SIEM deployment architecture the organization is planning to implement?

• A.Cloud, MSSP Managed
• B.Self-hosted, Jointly Managed
• C.Self-hosted, Self-Managed
• D.Self-hosted, MSSP Managed

Correct Answer: C

Comment: *

Name: *

Email: *

Verification: *

Which of the following is a Threat Intelligence Platform?

• A.SolarWinds MS
• B.TC Complete
• C.Keepnote
• D.Apility.io

Correct Answer: B

Comment: *

Name: *

Email: *

Verification: *

The Syslog message severity levels are labelled from level 0 to level 7.
What does level 0 indicate?

• A.Alert
• B.Notification
• C.Emergency
• D.Debugging

Correct Answer: C

Comment: *

Name: *

Email: *

Verification: *

Where will you find the reputation IP database, if you want to monitor traffic from known bad IP reputation using OSSIM SIEM?

• A./etc/ossim/reputation
• B./etc/ossim/server/reputation.data
• C./etc/siem/ossim/server/reputation.data
• D./etc/ossim/siem/server/reputation/data

Comment: *

Name: *

Email: *

Verification: *