Study Guides and Actual Real Exam Questions For Oracle OCP, MCSE, MCSA, CCNA, CompTIA


Advertise

Submit Braindumps

Forum

Tell A Friend

    Contact Us

 Home

 Search

Latest Brain Dumps

 BrainDump List

 Certifications Dumps

 Microsoft

 CompTIA

 Oracle

  Cisco
  CIW
  Novell
  Linux
  Sun
  Certs Notes
  How-Tos & Practices 
  Free Online Demos
  Free Online Quizzes
  Free Study Guides
  Free Online Sims
  Material Submission
  Test Vouchers
  Users Submissions
  Site Links
  Submit Site

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

Online Training Demos and Learning Tutorials for Windows XP, 2000, 2003.

 

 

 

 





Braindumps for "920-533" Exam

lucky dumps

 from ITCertkeys is the best site for all users


Google
 
Web www.certsbraindumps.com


Braindumps: Dumps for 2B0-018 Exam Brain Dump

Study Guides and Actual Real Exam Questions For Oracle OCP, MCSE, MCSA, CCNA, CompTIA


Advertise

Submit Braindumps

Forum

Tell A Friend

    Contact Us





Braindumps for "2B0-018" Exam

ES Dragon IDS

 Question 1.
Which of the following is NOT a typical function of an Intrusion Detection System?

A. Monitors segment traffic to detect suspicious activity
B. Monitors network traffic and corrects attacks
C. Monitors traffic patterns to report on malicious events
D. Monitors individual hosts (HIDS) or network segments (NIDS)

Answer:  B

Question 2.
Which best describes a SYN Flood attack?

A. Attacker redirects unusually large number of SYN/ACK packets
B. Attacker sends relatively large number of altered SYN packets
C. Attacker floods a host with a relatively large number of unaltered SYN packets
D. Attacker floods a host with an unusually large number of legitimate ACK packets

Answer:  B

Question 3.
Which best describes a type of attack that aims to prevent the use of a service or host?

A. Reconnaissance
B. Denial of Service
C. IP Spoofing
D. Exploit

Answer:  B

Question 4.
Which of the following is NOT a valid detection method used by Dragon Network Sensor?

A. Signature detection
B. Protocol detection
C. Policy detection
D. Anomaly detection

Answer:  C

Question 5.
Which of the following is NOT a function of Dragon Forensics Console?

A. Allows for central configuration of Active Response mechanisms to deter network attacks
B. Centrally analyzes activity as it is occurring or has occurred over time
C. Correlates events together across Network Sensor, Host Sensor, and any other infrastructure 
     system (e.g., firewall, router) for which messages have been received (via Host Sensor log  
     forwarding)
D. Provides the tools for performing a forensics level analysis and reconstructing an attackers 
     session

Answer:  A

Question 6.
Which of the following does NOT describe Dragon Host Sensors Multi-Detection methods?

A. Monitors output to a hosts system and audit logs
B. Monitors a hosts files via MD5 integrity-checking
C. Monitors a hosts specified network interlace promiscuously for anomalous activity
D. Monitors a hosts specific file attributes for changes to owner, group, permissions and file size
E. Monitors a Windows hosts Registry for attributes that should not be accessed and/or modified

Answer:  C

Question 7.
What is the method that Dragon uses to secure the communication between the remote management host and Dragon Policy Manager?

A. SSH
B. SSL
C. IPSec
D. MD5

Answer:  B

Question 8.
What is the primary and default source of event data tor Dragon RealTime Console?

A. dragon.log.xxxx
B. dragon.db
C. Ring Buffer
D. Dragon Workbench

Answer:  C

Question 9.
For what purpose can Dragon Workbench be used?

A. Read data from TCPDUMP trace/capture file and write to dragon .db for later analysis
B. Read data from dragon.db file and write to a TCPDUMP trace/capture file for later analysis
C. Read data from RealTime Console and write to a TCPDUMP trace/capture file for later 
     analysis
D. This functionality is ONLY available on Dragon Appliances

Answer:  A

Question 10.
What is one benefit of Dragon Network Sensors dual network interface capability as deployed on a non-Dragon Appliance system?

A. Secure management and reporting on one interface; Network Sensor invisible on other 
    interface
B. Allows for collection of event data from both interfaces simultaneously
C. Allows for protocol detection from one interface, and anomaly detection from the other 
    interface
D. This functionality is ONLY available on Dragon Appliances

Answer:  A


Google
 
Web www.certsbraindumps.com


Study Guides and Real Exam Questions For Oracle OCP, MCSE, MCSA, CCNA, CompTIA





              Privacy Policy                   Disclaimer                    Feedback                    Term & Conditions

www.helpline4IT.com

ITCertKeys.com

Copyright © 2004 CertsBraindumps.com Inc. All rights reserved.