Verified 312-85 Q&As - Pass Guarantee 312-85 Exam Dumps
Check the Free demo of our 312-85 Exam Dumps with 50 Questions
ECCouncil 312-85 Exam Syllabus Topics:
| Topic | Details |
|---|---|
| Topic 1 |
|
| Topic 2 |
|
| Topic 3 |
|
| Topic 4 |
|
| Topic 5 |
|
| Topic 6 |
|
| Topic 7 |
|
| Topic 8 |
|
| Topic 9 |
|
| Topic 10 |
|
NEW QUESTION 26
Kathy wants to ensure that she shares threat intelligence containing sensitive information with the appropriate audience. Hence, she used traffic light protocol (TLP).
Which TLP color would you signify that information should be shared only within a particular community?
- A. White
- B. Red
- C. Amber
- D. Green
Answer: C
NEW QUESTION 27
Michael, a threat analyst, works in an organization named TechTop, was asked to conduct a cyber-threat intelligence analysis. After obtaining information regarding threats, he has started analyzing the information and understanding the nature of the threats.
What stage of the cyber-threat intelligence is Michael currently in?
- A. Known unknowns
- B. Unknown unknowns
- C. Unknowns unknown
- D. Known knowns
Answer: A
NEW QUESTION 28
In a team of threat analysts, two individuals were competing over projecting their own hypotheses on a given malware. However, to find logical proofs to confirm their hypotheses, the threat intelligence manager used a de-biasing strategy that involves learning strategic decision making in the circumstances comprising multistep interactions with numerous representatives, either having or without any perfect relevant information.
Which of the following de-biasing strategies the threat intelligence manager used to confirm their hypotheses?
- A. Game theory
- B. Cognitive psychology
- C. Decision theory
- D. Machine learning
Answer: C
NEW QUESTION 29
Tracy works as a CISO in a large multinational company. She consumes threat intelligence to understand the changing trends of cyber security. She requires intelligence to understand the current business trends and make appropriate decisions regarding new technologies, security budget, improvement of processes, and staff. The intelligence helps her in minimizing business risks and protecting the new technology and business initiatives.
Identify the type of threat intelligence consumer is Tracy.
- A. Tactical users
- B. Operational users
- C. Technical users
- D. Strategic users
Answer: D
NEW QUESTION 30
H&P, Inc. is a small-scale organization that has decided to outsource the network security monitoring due to lack of resources in the organization. They are looking for the options where they can directly incorporate threat intelligence into their existing network defense solutions.
Which of the following is the most cost-effective methods the organization can employ?
- A. Look for an individual within the organization
- B. Recruit the right talent
- C. Recruit managed security service providers (MSSP)
- D. Recruit data management solution provider
Answer: C
NEW QUESTION 31
Alice, a threat intelligence analyst at HiTech Cyber Solutions, wants to gather information for identifying emerging threats to the organization and implement essential techniques to prevent their systems and networks from such attacks. Alice is searching for online sources to obtain information such as the method used to launch an attack, and techniques and tools used to perform an attack and the procedures followed for covering the tracks after an attack.
Which of the following online sources should Alice use to gather such information?
- A. Financial services
- B. Social network settings
- C. Job sites
- D. Hacking forums
Answer: D
NEW QUESTION 32
Steve works as an analyst in a UK-based firm. He was asked to perform network monitoring to find any evidence of compromise. During the network monitoring, he came to know that there are multiple logins from different locations in a short time span. Moreover, he also observed certain irregular log in patterns from locations where the organization does not have business relations. This resembles that somebody is trying to steal confidential information.
Which of the following key indicators of compromise does this scenario present?
- A. Unexpected patching of systems
- B. Unusual activity through privileged user account
- C. Geographical anomalies
- D. Unusual outbound network traffic
Answer: C
NEW QUESTION 33
Alison, an analyst in an XYZ organization, wants to retrieve information about a company's website from the time of its inception as well as the removed information from the target website.
What should Alison do to get the information he needs.
- A. Alison should recover cached pages of the website from the Google search engine cache to extract the required website information.
- B. Alison should use SmartWhois to extract the required website information.
- C. Alison should run the Web Data Extractor tool to extract the required website information.
- D. Alison should use https://archive.org to extract the required website information.
Answer: D
NEW QUESTION 34
Daniel is a professional hacker whose aim is to attack a system to steal data and money for profit. He performs hacking to obtain confidential data such as social security numbers, personally identifiable information (PII) of an employee, and credit card information. After obtaining confidential data, he further sells the information on the black market to make money.
Daniel comes under which of the following types of threat actor.
- A. Organized hackers
- B. Insider threat
- C. Industrial spies
- D. State-sponsored hackers
Answer: A
NEW QUESTION 35
What is the correct sequence of steps involved in scheduling a threat intelligence program?
1. Review the project charter
2. Identify all deliverables
3. Identify the sequence of activities
4. Identify task dependencies
5. Develop the final schedule
6. Estimate duration of each activity
7. Identify and estimate resources for all activities
8. Define all activities
9. Build a work breakdown structure (WBS)
- A. 3-->4-->5-->2-->1-->9-->8-->7-->6
- B. 1-->2-->3-->4-->5-->6-->7-->8-->9
- C. 1-->9-->2-->8-->3-->7-->4-->6-->5
- D. 1-->2-->3-->4-->5-->6-->9-->8-->7
Answer: C
NEW QUESTION 36
An organization suffered many major attacks and lost critical information, such as employee records, and financial information. Therefore, the management decides to hire a threat analyst to extract the strategic threat intelligence that provides high-level information regarding current cyber-security posture, threats, details on the financial impact of various cyber-activities, and so on.
Which of the following sources will help the analyst to collect the required intelligence?
- A. OSINT, CTI vendors, ISAO/ISACs
- B. Active campaigns, attacks on other organizations, data feeds from external third parties
- C. Human, social media, chat rooms
- D. Campaign reports, malware, incident reports, attack group reports, human intelligence
Answer: A
NEW QUESTION 37
In which of the following storage architecture is the data stored in a localized system, server, or storage hardware and capable of storing a limited amount of data in its database and locally available for data usage?
- A. Cloud storage
- B. Object-based storage
- C. Centralized storage
- D. Distributed storage
Answer: C
NEW QUESTION 38
In which of the following attacks does the attacker exploit vulnerabilities in a computer application before the software developer can release a patch for them?
- A. Zero-day attack
- B. Advanced persistent attack
- C. Distributed network attack
- D. Active online attack
Answer: A
NEW QUESTION 39
A network administrator working in an ABC organization collected log files generated by a traffic monitoring system, which may not seem to have useful information, but after performing proper analysis by him, the same information can be used to detect an attack in the network.
Which of the following categories of threat information has he collected?
- A. Advisories
- B. Strategic reports
- C. Detection indicators
- D. Low-level data
Answer: D
NEW QUESTION 40
SecurityTech Inc. is developing a TI plan where it can drive more advantages in less funds. In the process of selecting a TI platform, it wants to incorporate a feature that ranks elements such as intelligence sources, threat actors, attacks, and digital assets of the organization, so that it can put in more funds toward the resources which are critical for the organization's security.
Which of the following key features should SecurityTech Inc. consider in their TI plan for selecting the TI platform?
- A. Open
- B. Workflow
- C. Scoring
- D. Search
Answer: C
NEW QUESTION 41
......
Get professional help from our 312-85 Dumps PDF: https://www.certkingdompdf.com/312-85-latest-certkingdom-dumps.html
Clear your concepts with 312-85 Questions Before Attempting Real exam: https://drive.google.com/open?id=1HqavFOznu9JSFQbAsM4EKAAkaiHmSAS3