最新的 CREST Practitioner CPTIA 免費考試真題:
1. Walter and Sons Company has faced major cyber attacks and lost confidential data. The company has decided to concentrate more on the security rather than other resources. Therefore, they hired Alice, a threat analyst, to perform data analysis. Alice was asked to perform qualitative data analysis to extract useful information from collected bulk data.
Which of the following techniques will help Alice to perform qualitative data analysis?
A) Finding links between data and discover threat-related information
B) Brainstorming, interviewing, SWOT analysis, Delphi technique, and so on
C) Numerical calculations, statistical modeling, measurement, research, and so on.
D) Regression analysis, variance analysis, and so on
2. Sarah is a security operations center (SOC) analyst working at JW Williams and Sons organization based in Chicago. As a part of security operations, she contacts information providers (sharing partners) for gathering information such as collections of validated and prioritized threat indicators along with a detailed technical analysis of malware samples, botnets, DDoS attack methods, and various other malicious tools. She further used the collected information at the tactical and operational levels.
Sarah obtained the required information from which of the following types of sharing partner?
A) Providers of comprehensive cyber-threat intelligence
B) Providers of threat data feeds
C) Providers of threat indicators
D) Providers of threat actors
3. During the process of detecting and containing malicious emails, incident responders should examine the originating IP address of the emails.
The steps to examine the originating IP address are as follow:
1. Search for the IP in the WHOIS database
2. Open the email to trace and find its header
3. Collect the IP address of the sender from the header of the received mail
4. Look for the geographic address of the sender in the WHOIS database
Identify the correct sequence of steps to be performed by the incident responders to examine originating IP address of the emails.
A) 1-->3-->2-->4
B) 4-->1-->2-->3
C) 2-->1-->4-->3
D) 2-->3-->1-->4
4. Jason is an incident handler dealing with malware incidents. He was asked to perform memory dump analysis in order to collect the information about the basic functionality of any program. As a part of his assignment, he needs to perform string search analysis to search for the malicious string that could determine harmful actions that a program can perform. Which of the following string-searching tools Jason needs to use to do the intended task?
A) BinText
B) PEView
C) Process Explorer
D) Dependency Walker
5. A threat analyst wants to incorporate a requirement in the threat knowledge repository that provides an ability to modify or delete past or irrelevant threat data.
Which of the following requirement must he include in the threat knowledge repository to fulfil his needs?
A) Searchable functionality
B) Evaluating performance
C) Data management
D) Protection ranking
問題與答案:
| 問題 #1 答案: B | 問題 #2 答案: A | 問題 #3 答案: D | 問題 #4 答案: A | 問題 #5 答案: C |

下載最新試用版
1032位客戶反饋
我們對我們的產品非常有信心,所以我們不提供会给客户带去麻煩的產品。








122.146.212.* -
這個考題幫助我通過了CPTIA考試,這是最新版本。