350-701 Free Practice Test

- (Exam Topic 3)
Which Talos reputation center allows for tracking the reputation of IP addresses for email and web traffic?

1. A. IP and Domain Reputation Center
2. B. File Reputation Center
3. C. IP Slock List Center
4. D. AMP Reputation Center

Correct Answer: A

- (Exam Topic 3)
Which solution is more secure than the traditional use of a username and password and encompasses at least two of the methods of authentication?

1. A. single-sign on
2. B. RADIUS/LDAP authentication
3. C. Kerberos security solution
4. D. multifactor authentication

Correct Answer: D

- (Exam Topic 3)
An engineer is configuring web filtering for a network using Cisco Umbrella Secure Internet Gateway. The requirement is that all traffic needs to be filtered. Using the SSL decryption feature, which type of certificate should be presented to the end-user to accomplish this goal?

1. A. third-party
2. B. self-signed
3. C. organization owned root
4. D. SubCA

Correct Answer: C

- (Exam Topic 1)
When using Cisco AMP for Networks which feature copies a file to the Cisco AMP cloud for analysis?

1. A. Spero analysis
2. B. dynamic analysis
3. C. sandbox analysis
4. D. malware analysis

Correct Answer: B
Reference:
https://www.cisco.com/c/en/us/td/docs/security/firepower/60/configuration/guide/fpmc-config-guidev60/Refere Spero analysis only uploads the signature of the (executable) files to the AMP cloud. It does not upload
thewhole file. Dynamic analysis sends files to AMP ThreatGrid.Dynamic Analysis submits (the whole) files to Cisco Threat Grid (formerly AMP Threat Grid). Cisco ThreatGrid runs the file in a sandbox environment, analyzes the file’s behavior to determine whether the file ismalicious, and returns a threat score that indicates the likelihood that a file contains malware. From the threatscore, you can view a dynamic analysis summary report with the reasons for the assigned threat score. Youcan also look in Cisco Threat Grid to view detailed reports for files that your organization submitted, as well asscrubbed reports with limited data for files that your organization did not submit.Local malware analysis allows a managed device to locally inspect executables, PDFs, office documents, andother types of files for the most common types of malware, using a detection rule set provided by the CiscoTalos Security Intelligence and Research Group (Talos). Because local analysis does not query the AMP cloud,and does not run the file, local malware analysis saves time and system resources. -> Malware analysis doesnot upload files to anywhere, it only checks the files locally.There is no sandbox analysis feature, it is just a method of dynamic analysis that runs suspicious files in avirtual machine.

- (Exam Topic 3)
Which encryption algorithm provides highly secure VPN communications?

1. A. 3DES
2. B. AES 256
3. C. AES 128
4. D. DES

Correct Answer: B