Refer to the exhibit. What does this output indicate?

• A.HTTPS ports are open on the server.
• B.Email ports are closed on the server.
• C.FTP ports are open on the server.
• D.SMB ports are closed on the server.

Comment: *

Name: *

Email: *

Verification: *

Refer to the exhibit.

What is shown in this PCAP file?

• A.The HTTP GET is encoded.
• B.The protocol is TCP.
• C.Timestamps are indicated with error.
• D.The User-Agent is Mozilla/5.0.

Comment: *

Name: *

Email: *

Verification: *

An offline audit log contains the source IP address of a session suspected to have exploited a vulnerability resulting in system compromise.
Which kind of evidence is this IP address?

• A.best evidence
• B.indirect evidence
• C.corroborative evidence
• D.forensic evidence

Comment: *

Name: *

Email: *

Verification: *

Which system monitors local system operation and local network access for violations of a security policy?

• A.host-based intrusion detection
• B.systems-based sandboxing
• C.host-based firewall
• D.antivirus

Comment: *

Name: *

Email: *

Verification: *

Why is HTTPS traffic difficult to screen?

• A.The communication is encrypted and the data in transit is secured.
• B.HTTPS is used internally and screening traffic (or external parties is hard due to isolation.
• C.Digital certificates secure the session, and the data is sent at random intervals.
• D.Traffic is tunneled to a specific destination and is inaccessible to others except for the receiver.

Comment: *

Name: *

Email: *

Verification: *