- 4.9/5.0
- 402 Questions
- Updated on: 25-May-2026
- Understanding Cisco Cybersecurity Operations Fundamentals (CBROPS)
- 24025 Prepared
Free Cisco 200-201 Practice Questions 2026 | Understanding Cisco Cybersecurity Operations Fundamentals (CBROPS)
A security expert is working on a copy of the evidence, an ISO file that is saved in CDFS format. Which type of evidence is this file?
A.
CD data copy prepared in Windows
B.
CD data copy prepared in Mac-based system
C.
CD data copy prepared in Linux system
D.
CD data copy prepared in Android-based system
CD data copy prepared in Windows
What is an example of social engineering attacks?
A.
A. receiving an unexpected email from an unknown person with an uncharacteristic attachment from someone in the same company
B.
receiving an email from human resources requesting a visit to their secure website to update contact information
C.
sending a verbal request to an administrator who knows how to change an account password
D.
receiving an invitation to the department’s weekly WebEx meeting
receiving an email from human resources requesting a visit to their secure website to update contact information
Which utility blocks a host portscan?
A.
HIDS
B.
sandboxing
C.
host-based firewall
D.
antimalware
host-based firewall
During which phase of the forensic process is data that is related to a specific event labeled and recorded to preserve its integrity?
A.
examination
B.
investigation
C.
collection
D.
reporting
collection
What is the difference between a threat and a risk?
A.
Threat represents a potential danger that could take advantage of a weakness in a system
B.
Risk represents the known and identified loss or danger in the system
C.
Risk represents the nonintentional interaction with uncertainty in the system
D.
Threat represents a state of being exposed to an attack or a compromise either
physically or logically
Threat represents a potential danger that could take advantage of a weakness in a system
A system administrator is ensuring that specific registry information is accurate.
Which type of configuration information does the HKEY_LOCAL_MACHINE hive contain?
A.
file extension associations
B.
hardware, software, and security settings for the system
C.
currently logged in users, including folders and control panel settings
D.
all users on the system, including visual settings
hardware, software, and security settings for the system
Which list identifies the information that the client sends to the server in the negotiation phase of the TLS handshake?
A.
ClientStart, ClientKeyExchange, cipher-suites it supports, and suggested compression methods
B.
ClientStart, TLS versions it supports, cipher-suites it supports, and suggested
compression methods
C.
ClientHello, TLS versions it supports, cipher-suites it supports, and suggested
compression methods
D.
ClientHello, ClientKeyExchange, cipher-suites it supports, and suggested compression methods
ClientHello, TLS versions it supports, cipher-suites it supports, and suggested
compression methods
Which evasion technique is a function of ransomware?
A.
extended sleep calls
B.
encryption
C.
resource exhaustion
D.
encoding
encryption
What is a purpose of a vulnerability management framework?
A.
identifies, removes, and mitigates system vulnerabilities
B.
detects and removes vulnerabilities in source code
C.
conducts vulnerability scans on the network
D.
manages a list of reported vulnerabilities
identifies, removes, and mitigates system vulnerabilities
Which two pieces of information are collected from the IPv4 protocol header? (Choose two.)
A.
UDP port to which the traffic is destined
B.
TCP port from which the traffic was sourced
C.
source IP address of the packet
D.
IP address of the packet
E.
UDP port from which the traffic is sourced
source IP address of the packet
D.
IP address of the packet
| Page 11 out of 41 Pages |