200-201 Questions Bank

Understanding Cisco Cybersecurity Operations Fundamentals (CBROPS) Questions and Answers

Question 5

What is the difference between a vulnerability and an attack surface?

A vulnerability is the risk of exploiting a weakness in the application, and the target application itself is the attack surface

The attack surface is the SQL injection targeted on the database, and the database is the vulnerability that might be exploited.

The attack surface is a sum of measured risks for a particular asset, and the vulnerability is an unmeasured exploitable risk

A vulnerability is unsanitized user input sent to exploit a web application and the browser is the attack surface for the web application

Question 6

Refer to the exhibit. An attacker scanned the server using Nmap. What did the attacker obtain from this scan?

Identified a firewall device preventing the pert state from being returned.

Identified open SMB ports on the server

Gathered information on processes running on the server

Gathered a list of Active Directory users

Question 7

What are two differences of deep packet inspection compared to stateful firewall inspection? (Choose two.)

static lists for maintaining a strict access control level

offers application-level monitoring

inspection of only the first packet during a connection attempt

different rule configurations based on payload pattern

quality of service capabilities based on list definitions

Question 8

What is the difference between a threat and a risk?

Threat represents a potential danger that could take advantage of a weakness in a system

Risk represents the known and identified loss or danger in the system

Risk represents the nonintentional interaction with uncertainty in the system

Threat represents a state of being exposed to an attack or a compromise, either physically or logically.