ECCouncil 312-39 - Certified SOC Analyst Exam
Page: 2 / 20
Total 100 questions
Question #6 (Topic: Topic 1)
Ray is a SOC analyst in a company named Queens Tech. One Day, Queens Tech is affected by a DoS/DDoS attack. For the containment of this incident, Ray and his team are trying to provide additional bandwidth to the network devices and increasing the capacity of the servers.
What is Ray and his team doing?
What is Ray and his team doing?
A. Blocking the Attacks
B. Diverting the Traffic
C. Degrading the services
D. Absorbing the Attack
Answer: D
Question #7 (Topic: Topic 1)
Identify the attack when an attacker by several trial and error can read the contents of a password file present in the restricted etc folder just by manipulating the URL in the browser as shown:
http://www.terabytes.com/process.php./../../../../etc/passwd
http://www.terabytes.com/process.php./../../../../etc/passwd
A. Directory Traversal Attack
B. SQL Injection Attack
C. Denial-of-Service Attack
D. Form Tampering Attack
Answer: B
Question #8 (Topic: Topic 1)
Which encoding replaces unusual ASCII characters with "%" followed by the character’s two-digit ASCII code expressed in hexadecimal?
A. Unicode Encoding
B. UTF Encoding
C. Base64 Encoding
D. URL Encoding
Answer: D
Question #9 (Topic: Topic 1)
Which of the following formula represents the risk?
A. Risk = Likelihood × Severity × Asset Value
B. Risk = Likelihood × Consequence × Severity
C. Risk = Likelihood × Impact × Severity
D. Risk = Likelihood × Impact × Asset Value
Answer: B
Question #10 (Topic: Topic 1)
The Syslog message severity levels are labelled from level 0 to level 7.
What does level 0 indicate?
What does level 0 indicate?
A. Alert
B. Notification
C. Emergency
D. Debugging
Answer: B