Note:

  • CCIE Security 350-018 exam will be retired on January 30, 2017, the new exam is 400-251.
  • CCNA Data Center 640-911 DCICN exam will be retired on April 11, 2017.
  • CCNA Data Center 640-916 DCICT exam will be retired on April 11, 2017.
  • CCNP Data Center 642-035 DCUCT exam will be retired on July 3, 2017.
  • CCNP Data Center 642-980 DCUFT exam will be retired on July 3, 2017.
  • CCNP Data Center 642-996 DCUFD exam will be retired on July 3, 2017.
  • CCNP Data Center 642-997 DCUFI exam will be retired on July 3, 2017.
  • CCNP Data Center 642-998 DCUCD exam will be retired on July 3, 2017.
  • CCNP Data Center 642-999 DCUCI exam will be retired on July 3, 2017.
  • The new CCNP Data Center certification required exams are 300-180 DCIT, 300-165 DCII, 300-160 DCID, 300-175 DCUCI and 300-170 DCVAI exams.
18 May

300-165 DCII Implementing Cisco Data Center Unified Fabric

642-997 DCUFI exam will be retired on July 23, 2017. The replacement test is 300-165 DCII Implementing Cisco Data Center Unified Fabric.

Implementing Cisco Data Center Unified Fabric is the full name of 300-165 DCII test. In real Cisco 300-165 DCII exam, there are 60-70 questions. Candidates have 90 minutes to complete the test. The Associated Certification is CCNP Data Center. The available language is English. Candidates can register Cisco 300-165 DCII exam at Pearson VUE testing center.

Knowing Implementing Cisco Data Center Unified Fabric 300-165 DCII exam topics are valuable in your preparation.

1.0 Implement Data Center Protocols 29%

1.1 Implement vPC
1.2 Implement FabricPath
1.2.a Segment ID
1.2.b Distributed gateway, anycast HSRP
1.2.c Multiprotocol BGP
1.2.d vPC+
1.3 Implement VXLAN
1.3.a Distributed gateway
1.3.b Multiprotocol-BGP-EVPN
1.3.c vPC
1.4 Implement OTV
1.5 Implement LISP

2.0 Implement Routing and Switching Protocols 22%

2.1 Implement routing protocols
2.1.a OSPFv2, OSPFv3
2.1.b IS-IS
2.1.c PIM
2.1.d FHRP
2.1.d [i] HSRP
2.1.d [ii] VRRP
2.2 Implement switching protocols
2.2.a STP
2.2.b LACP/port channel
2.2.c FEX, VNTAG

3.0 Data Center Infrastructure Maintenance, Management, and Operations 14%

3.1 Plan and execute software updates
3.1.a Disruptive / nondisruptive
3.1.b EPLD
3.2 Implement configuration management
3.2.a Backups / restore
3.2.b Checkpoints /rollback
3.3 Implement infrastructure monitoring
3.3.a Logging
3.3.b SNMP
3.3.c Call Home
3.3.d NetFlow
3.3.e SPAN
3.4 Configure time synchronization
3.4.a PTP
3.4.b NTP

4.0 Data Center Infrastructure Security 12%

4.1 Implement ACLs
4.2 Implement AAA and RBAC
4.3 Implement keychain authentication
4.4 Implement first-hop security
4.4.a Dynamic ARP inspections
4.4.b DHCP snooping
4.4.c Unicast RPF
4.4.d MACsec
4.4.e Port security
4.5 Implement CoPP
4.6 Implement fabric binding and port security

5.0 Infrastructure Storage 23%

5.1 Implement Fibre Channel fabric
5.1.a Switched fabric initialization
5.1.b Port channels, ISL
5.1.c FCID
5.1.d FCIP
5.2 Implement Fibre Channel Protocol services
5.2.a Zoning
5.2.b Cisco Fabric Services
5.2.c FCNS
5.2.d Device alias
5.2.e VSAN
5.2.f FSPF
5.3 Implement FCoE Unified Fabric
5.3.a Storage VDC
5.3.b FIP
5.3.c FCoE topologies
5.3.d DCB

18 May

300-160 DCID Designing Cisco Data Center Unified Computing

642-996 DCUFD exam will be retired on July 23, 2017. The replacement test is 300-160 DCID Designing Cisco Data Center Unified Computing.

Designing Cisco Data Center Unified Computing is the full name of 300-160 DCID test. There are 60-70 questions in real  exam, which will take the candidates 90 minutes to complete the test. The Associated Certification is CCNP Data Center. The available language is English. Candidates can register Cisco 300-160 DCID exam at Pearson VUE testing center.

It is useful for the candidates to know Designing Cisco Data Center Unified Computing 300-160 DCID exam topics.

1.0 Data Center Network Connectivity Design 24%

1.1 Evaluate options for Layer 2 connectivity to meet deployment requirements in the data center
1.1.a Endpoint mobility
1.1.b Redundancy / high availability
1.1.c Convergence
1.1.d Services insertion
1.2 Evaluate options for Layer 3 connectivity to meet deployment requirements in the data center
1.2.a IP mobility
1.2.b Redundancy / high availability
1.2.b [i] Graceful restart / NSF
1.2.c Convergence
1.2.d Services insertion
1.2.d [i] Load balancing
1.2.d [ii] Security

2.0 Data Center Infrastructure Design 21%

2.1 Evaluate data center protocols to meet deployment requirements
2.1.a Fabric Path
2.1.b OTV
2.1.c VXLAN
2.1.d LISP
2.1.e VPC/VPC+
2.2 Evaluate options for orchestration and management in a data center
2.2.a Orchestration and automation
2.2.b Out-of-band management network
2.2.c License management
2.3 Evaluate options for device and routing virtualization in a data center
2.3.a VDC
2.3.b VRF
2.4 Evaluate options for interconnecting data centers

3.0 Data Center Storage Network Design 21%

3.1 Plan for iSCSI deployment in the data center
3.1.a Multipathing
3.1.b Addressing schemes
3.2 Evaluate QoS requirements in the data center
3.2.a Fibre Channel
3.2.b FCoE
3.2.c FCIP
3.2.d iSCSI
3.3 Determine FCoE/ Fibre Channel interface parameters based on data center requirements
3.3.a Dedicated and shared mode
3.3.b Port types
3.3.c ISL
3.3.d Oversubscription
3.4 Evaluate SAN Topology options in the data center
3.4.a Fabric redundancy
3.4.b NPV, NPIV, and FCF
3.4.c Load balancing

4.0 Data Center Compute Connectivity Design 19%

4.1 Evaluate options for Ethernet connectivity to meet deployment requirements in a data center
4.1.a Redundancy / high availability
4.1.b Bandwidth
4.1.b [i] Over subscription
4.1.c Fabric interconnect operation mode
4.1.c [i] Switch mode
4.1.c [ii] End host mode
4.2 Evaluate options for storage connectivity to meet deployment requirements in a data center
4.2.a Multipathing
4.2.b Bandwidth
4.2.b [i] Port channels
4.2.b [ii] Oversubscription
4.2.c Fabric interconnect operation mode
4.2.c [i] Switch mode
4.2.c [ii] End host mode
4.2.d Direct-attached storage
4.2.d [i] Appliance port
4.2.d [ii] Fibre Channel storage port
4.2.d [iii] FCoE port

5.0 Data Center Compute Resource Parameters Design 15%

5.1 Evaluate options for orchestration and automation in the data center
5.1.a Service profile templates
5.1.b vNIC templates
5.1.c vHBA templates
5.1.d Global policies vs local policies
5.2 Evaluate options for management network in a data center
5.2.a In-band
5.2.b Out-of-band
5.3 Evaluate options for network device virtualization in a data center
5.3.a Cisco VIC adaptors
5.3.a [i] Number of interfaces vs IOM uplinks
5.3.a [ii] vCon placement policies
5.3.a [iii] Ethernet adaptor policies
5.3.a [iv] Fibre Channel policies

11 May

200-155 DCICT Online Test-Introducing Cisco Data Center Networking Technologies

Currently, our 200-155 DCICT online test only provide 10 questions. Answer one question correctly, you can get 10 points. The content of these questions are the latest exam content. Please feel free to test your skill level.

If you have some opinions or suggestions about our online test, please leave your message, we will improve it step by step.

Now, begin to test:

1. Which two Cisco Nexus 1000V Series Switch features exceed the functionality of the VWware vNetwork Distributed Switch? (Choose two)

 
 
 
 
 

2. When using a Cisco UCS Director, a typical workflow consists of which two terms? (Choose Two)

 
 
 
 
 

3. Which model is a deployment model in cloud computing?

 
 
 
 

4. Which statement about a bridge domain is true?

 
 
 
 

5. Which two options are primary elements of a tenant? (Choose two)

 
 
 
 
 

6. Which two protocols are encapsulated in FCoE? (Choose two.)

 
 
 
 
 

7. What are two advantages to running Fabric Path in the data center over using Spanning Tree? (Choose two.)

 
 
 
 
 

8. Which privilege is assigned by default to the UCS Manager Storage Administrator user role?

 
 
 
 

9. Which two standards enable Ethernet to support FCoE? (Choose two.)

 
 
 
 
 

10. The ARC is responsible for which two processes? (Choose two)

 
 
 
 
 

Question 1 of 10

11 May

200-150 DCICN Online Test-Introducing Cisco Data Center Networking

Currently, our 200-150 DCICN online test only provide 10 questions. Answer one question correctly, you can get 10 points. The content of these questions are the latest exam content. Please feel free to test your skill level.

If you have some opinions or suggestions about our online test, please leave your message, we will improve it step by step.

Now, begin to test:

Please go to 200-150 DCICN Online Test-Introducing Cisco Data Center Networking to view the test

10 May

200-155 DCICT Introducing Cisco Data Center Networking Technologies

Introducing Cisco Data Center Networking Technologies is the exam name of 200-155 DCICT test. There are 55-65 questions in real Cisco 200-155 DCICT exam, which will take the candidates 90 minutes to complete the test. The Associated Certification is CCNA Data Center. The available language is English. Candidates can register Cisco 200-155 DCICT exam at Pearson VUE testing center.

It is also important for the candidates to know Cisco 200-155 DCICT Introducing Cisco Data Center Networking Technologies exam topics below.

1.0 Unified Computing 25%

1.1 Describe common server types and connectivity found in a data center
1.2 Describe the physical components of the Cisco UCS
1.3 Describe the concepts and benefits of Cisco UCS hardware abstraction
1.4 Perform basic Cisco UCS configuration
1.4.a Cluster high availability
1.4.b Port roles
1.4.c Hardware discovery
1.5 Describe server virtualization concepts and benefits
1.5.a Hypervisors
1.5.b Virtual switches
1.5.c Shared storage
1.5.d Virtual Machine components
1.5.e Virtual Machine Manager

2.0 Network Virtualization 17%

2.1 Describe the components and operations of Cisco virtual switches
2.2 Describe the concepts of overlays
2.2.a OTV
2.2.b NVGRE
2.2.c VXLAN
2.3 Describe the benefits and perform simple troubleshooting of VDC STP
2.4 Compare and contrast the default and management VRFs
2.5 Differentiate between the data, control, and management planes

3.0 Cisco Data Center Networking Technologies 26%

3.1 Describe, configure, and verify FEX connectivity
3.2 Describe, configure, and verify basic vPC features
3.3 Describe, configure, and verify FabricPath
3.4 Describe, configure, and verify unified switch ports
3.5 Describe the features and benefits of Unified Fabric
3.6 Describe and explain the use of role-based access control within the data center infrastructure

4.0 Automation and Orchestration 15%

4.1 Explain the purpose and value of using APIs
4.2 Describe the basic concepts of cloud computing
4.3 Describe the basic functions of a Cisco UCS Director
4.3.a Management
4.3.b Orchestration
4.3.c Multitenancy
4.3.d Chargeback
4.3.e Service offerings
4.3.f Catalogs
4.4 Interpret and troubleshoot a Cisco UCS Director workflow

5.0 Application Centric Infrastructure 17%

5.1 Describe the architecture of an ACI environment
5.1.a Basic policy resolution
5.1.b APIC controller
5.1.c Spine leaf
5.1.d APIs
5.2 Describe the fabric discovery process
5.3 Describe the policy-driven, multitier application deployment model and its benefits
5.4 Describe the ACI logical model
5.4.a Tenants
5.4.b Context
5.4.c Bridge domains
5.4.d EPG
5.4.e Contracts

10 May

200-150 DCICN Introducing Cisco Data Center Networking

200-150 DCICN Introducing Cisco Data Center Networking is available now. There are 55-65 questions in real Cisco 200-150 DCICN exam, which will take the candidates 90 minutes to complete the test. The Associated Certification is CCNA Data Center. The available language is English. Candidates can register Cisco 200-150 DCICN exam at Pearson VUE testing center.

It is also helpful for the candidates to know Cisco 200-150 DCICN exam topics.

1.0 Data Center Physical Infrastructure 15%

1.1 Describe different types of cabling, uses, and limitations
1.2 Describe different types of transceivers, uses, and limitations
1.3 Identify physical components of a server and perform basic troubleshooting
1.4 Identify physical port roles
1.5 Describe power redundancy modes

2.0 Basic Data Center Networking Concepts 23%

2.1 Compare and contrast the OSI and the TCP/IP models
2.2 Describe classic Ethernet fundamentals
2.2.a Forward
2.2.b Filter
2.2.c Flood
2.2.d MAC address table
2.3 Describe switching concepts and perform basic configuration
2.3.a STP
2.3.b 802.1q
2.3.c Port channels
2.3.d Neighbor discovery
2.3.d [i] CDP
2.3.d [ii] LLDP
2.3.e Storm control

3.0 Advanced Data Center Networking Concepts 23%

3.1 Basic routing operations
3.1.a Explain and demonstrate IPv4/IPv6 addressing
3.1.b Compare and contrast static and dynamic routing
3.1.c Perform basic configuration of SVI/routed interfaces
3.2 Compare and contrast the First Hop Redundancy Protocols
3.2.a VRRP
3.2.b GLBP
3.2.c HSRP
3.3 Compare and contrast common data center network architectures
3.3.a 2 Tier
3.3.b 3 Tier
3.3.c Spine-leaf
3.4 Describe the use of access control lists to perform basic traffic filtering
3.5 Describe the basic concepts and components of authentication, authorization, and accounting

4.0 Basic Data Center Storage 19%

4.1 Differentiate between file and block based storage protocols
4.2 Describe the roles of FC/FCoE port types
4.3 Describe the purpose of a VSAN
4.4 Describe the addressing model of block based storage protocols
4.4.a FC
4.4.b iSCSI

5.0 Advanced Data Center Storage 20%

5.1 Describe FCoE concepts and operations
5.1.a Encapsulation
5.1.b DCB
5.1.c vFC
5.1.d Topologies
5.1.d [i] Single hop
5.1.d [ii] Multihop
5.1.d [iii] Dynamic
5.2 Describe Node Port Virtualization
5.3 Describe zone types and their uses
5.4 Verify the communication between the initiator and target
5.4.a FLOGI
5.4.b FCNS
5.4.c active zone set

08 May

210-255 SECOPS Implementing Cisco Cybersecurity Operations

The full name of 210-255 SECOPS exam is Implementing Cisco Cybersecurity Operations. There are 55-60 questions in real Cisco 210-255 SECOPS exam, which will take the candidates 90 minutes to complete the test. The available language is English. The Associated Certifications is CCNA Cyber Ops. Candidates can register Cisco 210-255 SECOPS exam at Pearson VUE testing center.

It is also valuable for the candidates to know Cisco 210-255 SECOPS exam topics.

1.0 Endpoint Threat Analysis and Computer Forensics 15%

1.1 Interpret the output report of a malware analysis tool such as AMP Threat Grid and Cuckoo Sandbox
1.2 Describe these terms as they are defined in the CVSS 3.0:
1.2.a Attack vector
1.2.b Attack complexity
1.2.c Privileges required
1.2.d User interaction
1.2.e Scope
1.3 Describe these terms as they are defined in the CVSS 3.0
1.3.a Confidentiality
1.3.b Integrity
1.3.c Availability
1.4 Define these items as they pertain to the Microsoft Windows file system
1.4.a FAT32
1.4.b NTFS
1.4.c Alternative data streams
1.4.d MACE
1.4.e EFI
1.4.f Free space
1.4.g Timestamps on a file system
1.5 Define these terms as they pertain to the Linux file system
1.5.a EXT4
1.5.b Journaling
1.5.c MBR
1.5.d Swap file system
1.5.e MAC
1.6 Compare and contrast three types of evidence
1.6.a Best evidence
1.6.b Corroborative evidence
1.6.c Indirect evidence
1.7 Compare and contrast two types of image
1.7.a Altered disk image
1.7.b Unaltered disk image
1.8 Describe the role of attribution in an investigation
1.8.a Assets
1.8.b Threat actor

2.0 Network Intrusion Analysis 22%

2.1 Interpret basic regular expressions
2.2 Describe the fields in these protocol headers as they relate to intrusion analysis:
2.2.a Ethernet frame
2.2.b IPv4
2.2.c IPv6
2.2.d TCP
2.2.e UDP
2.2.f ICMP
2.2.g HTTP
2.3 Identify the elements from a NetFlow v5 record from a security event
2.4 Identify these key elements in an intrusion from a given PCAP file
2.4.a Source address
2.4.b Destination address
2.4.c Source port
2.4.d Destination port
2.4.e Protocols
2.4.f Payloads
2.5 Extract files from a TCP stream when given a PCAP file and Wireshark
2.6 Interpret common artifact elements from an event to identify an alert
2.6.a IP address (source / destination)
2.6.b Client and Server Port Identity
2.6.c Process (file or registry)
2.6.d System (API calls)
2.6.e Hashes
2.6.f URI / URL
2.7 Map the provided events to these source technologies
2.7.a NetFlow
2.7.b IDS / IPS
2.7.c Firewall
2.7.d Network application control
2.7.e Proxy logs
2.7.f Antivirus
2.8 Compare and contrast impact and no impact for these items
2.8.a False Positive
2.8.b False Negative
2.8.c True Positive
2.8.d True Negative
2.9 Interpret a provided intrusion event and host profile to calculate the impact flag generated by Firepower Management Center (FMC)

3.0 Incident Response 18%

3.1 Describe the elements that should be included in an incident response plan as stated in NIST.SP800-61 r2
3.2 Map elements to these steps of analysis based on the NIST.SP800-61 r2
3.2.a Preparation
3.2.b Detection and analysis
3.2.c Containment, eradication, and recovery
3.2.d Post-incident analysis (lessons learned)
3.3 Map the organization stakeholders against the NIST IR categories (C2M2, NIST.SP800-61 r2)
3.3.a Preparation
3.3.b Detection and analysis
3.3.c Containment, eradication, and recovery
3.3.d Post-incident analysis (lessons learned)
3.4 Describe the goals of the given CSIRT
3.4.a Internal CSIRT
3.4.b National CSIRT
3.4.c Coordination centers
3.4.d Analysis centers
3.4.e Vendor teams
3.4.f Incident response providers (MSSP)
3.5 Identify these elements used for network profiling
3.5.a Total throughput
3.5.b Session duration
3.5.c Ports used
3.5.d Critical asset address space
3.6 Identify these elements used for server profiling
3.6.a Listening ports
3.6.b Logged in users/service accounts
3.6.c Running processes
3.6.d Running tasks
3.6.e Applications
3.7 Map data types to these compliance frameworks
3.7.a PCI
3.7.b HIPPA (Health Insurance Portability and Accountability Act)
3.7.c SOX
3.8 Identify data elements that must be protected with regards to a specific standard (PCI-DSS)

4.0 Data and Event Analysis 23%

4.1 Describe the process of data normalization
4.2 Interpret common data values into a universal format
4.3 Describe 5-tuple correlation
4.4 Describe the 5-tuple approach to isolate a compromised host in a grouped set of logs
4.5 Describe the retrospective analysis method to find a malicious file, provided file analysis report
4.6 Identify potentially compromised hosts within the network based on a threat analysis report containing malicious IP address or domains
4.7 Map DNS logs and HTTP logs together to find a threat actor
4.8 Map DNS, HTTP, and threat intelligence data together
4.9 Identify a correlation rule to distinguish the most significant alert from a given set of events from multiple data sources using the firepower management console
4.10 Compare and contrast deterministic and probabilistic analysis

5.0 Incident Handling 22%

5.1 Classify intrusion events into these categories as defined in the diamond model of intrusion
5.1.a Reconnaissance
5.1.b Weaponization
5.1.c Delivery
5.1.d Exploitation
5.1.e Installation
5.1.f Command and control
5.1.g Action on objectives
5.2 Apply the NIST.SP800-61 r2 incident handling process to an event
5.3 Define these activities as they relate to incident handling
5.3.a Identification
5.3.b Scoping
5.3.c Containment
5.3.d Remediation
5.3.e Lesson-based hardening
5.3.f Reporting
5.4 Describe these concepts as they are documented in NIST SP800-86
5.4.a Evidence collection order
5.4.b Data integrity
5.4.c Data preservation
5.4.d Volatile data collection
5.5 Apply the VERIS schema categories to a given incident

08 May

210-250 SECFND Understanding Cisco Cybersecurity Fundamentals

Understanding Cisco Cybersecurity Fundamentals is the full name of 210-250 SECFND test. There are 55-60 questions in real Cisco 210-250 SECFND exam, which will take the candidates 90 minutes to complete the 210-250 SECFND test. The Associated Certifications is CCNA Cyber Ops. The available language is English. Candidates can register Cisco 210-250 SECFND exam at Pearson VUE testing center.

It is useful for the candidates to know Cisco 210-250 SECFND exam topics.

1.0 Network Concepts 12%

1.1 Describe the function of the network layers as specified by the OSI and the TCP/IP network models
1.2 Describe the operation of the following
1.2.a IP
1.2.b TCP
1.2.c UDP
1.2.d ICMP
1.3 Describe the operation of these network services
1.3.a ARP
1.3.b DNS
1.3.c DHCP
1.4 Describe the basic operation of these network device types
1.4.a Router
1.4.b Switch
1.4.c Hub
1.4.d Bridge
1.4.e Wireless access point (WAP)
1.4.f Wireless LAN controller (WLC)
1.5 Describe the functions of these network security systems as deployed on the host, network, or the cloud:
1.5.a Firewall
1.5.b Cisco Intrusion Prevention System (IPS)
1.5.c Cisco Advanced Malware Protection (AMP)
1.5.d Web Security Appliance (WSA) / Cisco Cloud Web Security (CWS)
1.5.e Email Security Appliance (ESA) / Cisco Cloud Email Security (CES)
1.6 Describe IP subnets and communication within an IP subnet and between IP subnets
1.7 Describe the relationship between VLANs and data visibility
1.8 Describe the operation of ACLs applied as packet filters on the interfaces of network devices
1.9 Compare and contrast deep packet inspection with packet filtering and stateful firewall operation
1.10 Compare and contrast inline traffic interrogation and taps or traffic mirroring
1.11 Compare and contrast the characteristics of data obtained from taps or traffic mirroring and NetFlow in the analysis of network traffic
1.12 Identify potential data loss from provided traffic profiles

2.0 Security Concepts 17%

2.1 Describe the principles of the defense in depth strategy
2.2 Compare and contrast these concepts
2.2.a Risk
2.2.b Threat
2.2.c Vulnerability
2.2.d Exploit
2.3 Describe these terms
2.3.a Threat actor
2.3.b Run book automation (RBA)
2.3.c Chain of custody (evidentiary)
2.3.d Reverse engineering
2.3.e Sliding window anomaly detection
2.3.f PII
2.3.g PHI
2.4 Describe these security terms
2.4.a Principle of least privilege
2.4.b Risk scoring/risk weighting
2.4.c Risk reduction
2.4.d Risk assessment
2.5 Compare and contrast these access control models
2.5.a Discretionary access control
2.5.b Mandatory access control
2.5.c Nondiscretionary access control
2.6 Compare and contrast these terms
2.6.a Network and host antivirus
2.6.b Agentless and agent-based protections
2.6.c SIEM and log collection
2.7 Describe these concepts
2.7.a Asset management
2.7.b Configuration management
2.7.c Mobile device management
2.7.d Patch management
2.7.e Vulnerability management

3.0 Cryptography 12%

3.1 Describe the uses of a hash algorithm
3.2 Describe the uses of encryption algorithms
3.3 Compare and contrast symmetric and asymmetric encryption algorithms
3.4 Describe the processes of digital signature creation and verification
3.5 Describe the operation of a PKI
3.6 Describe the security impact of these commonly used hash algorithms
3.6.a MD5
3.6.b SHA-1
3.6.c SHA-256
3.6.d SHA-512
3.7 Describe the security impact of these commonly used encryption algorithms and secure communications protocols
3.7.a DES
3.7.b 3DES
3.7.c AES
3.7.d AES256-CTR
3.7.e RSA
3.7.f DSA
3.7.g SSH
3.7.h SSL/TLS
3.8 Describe how the success or failure of a cryptographic exchange impacts security investigation
3.9 Describe these items in regards to SSL/TLS
3.9.a Cipher-suite
3.9.b X.509 certificates
3.9.c Key exchange
3.9.d Protocol version
3.9.e PKCS

4.0 Host-Based Analysis 19%

4.1 Define these terms as they pertain to Microsoft Windows
4.1.a Processes
4.1.b Threads
4.1.c Memory allocation
4.1.d Windows Registry
4.1.e WMI
4.1.f Handles
4.1.g Services
4.2 Define these terms as they pertain to Linux
4.2.a Processes
4.2.b Forks
4.2.c Permissions
4.2.d Symlinks
4.2.e Daemon
4.3 Describe the functionality of these endpoint technologies in regards to security monitoring
4.3.a Host-based intrusion detection
4.3.b Antimalware and antivirus
4.3.c Host-based firewall
4.3.d Application-level whitelisting/blacklisting
4.3.e Systems-based sandboxing (such as Chrome, Java, Adobe reader)
4.4 Interpret these operating system log data to identify an event
4.4.a Windows security event logs
4.4.b Unix-based syslog
4.4.c Apache access logs
4.4.d IIS access logs

5.0 Security Monitoring 19%

5.1 Identify the types of data provided by these technologies
5.1.a TCP Dump
5.1.b NetFlow
5.1.c Next-Gen firewall
5.1.d Traditional stateful firewall
5.1.e Application visibility and control
5.1.f Web content filtering
5.1.g Email content filtering
5.2 Describe these types of data used in security monitoring
5.2.a Full packet capture
5.2.b Session data
5.2.c Transaction data
5.2.d Statistical data
5.2.f Extracted content
5.2.g Alert data
5.3 Describe these concepts as they relate to security monitoring
5.3.a Access control list
5.3.b NAT/PAT
5.3.c Tunneling
5.3.d TOR
5.3.e Encryption
5.3.f P2P
5.3.g Encapsulation
5.3.h Load balancing
5.4 Describe these NextGen IPS event types
5.4.a Connection event
5.4.b Intrusion event
5.4.c Host or endpoint event
5.4.d Network discovery event
5.4.e NetFlow event
5.5 Describe the function of these protocols in the context of security monitoring
5.5.a DNS
5.5.b NTP
5.5.c SMTP/POP/IMAP
5.5.d HTTP/HTTPS

6.0 Attack Methods 21%

6.1 Compare and contrast an attack surface and vulnerability
6.2 Describe these network attacks
6.2.a Denial of service
6.2.b Distributed denial of service
6.2.c Man-in-the-middle
6.3 Describe these web application attacks
6.3.a SQL injection
6.3.b Command injections
6.3.c Cross-site scripting
6.4 Describe these attacks
6.4.a Social engineering
6.4.b Phishing
6.4.c Evasion methods
6.5 Describe these endpoint-based attacks
6.5.a Buffer overflows
6.5.b Command and control (C2)
6.5.c Malware
6.5.d Rootkit
6.5.e Port scanning
6.5.f Host profiling
6.6 Describe these evasion methods
6.6.a Encryption and tunneling
6.6.b Resource exhaustion
6.6.c Traffic fragmentation
6.6.d Protocol-level misinterpretation
6.6.e Traffic substitution and insertion
6.6.f Pivot
6.7 Define privilege escalation
6.8 Compare and contrast remote exploit and a local exploit

08 May

210-250 SECFND Online Test-Understanding Cisco Cybersecurity Fundamentals

Currently, our 210-250 SECFND online test only provide 10 questions. Answer one question correctly, you can get 10 points. The content of these questions are the latest exam content. Please feel free to test your skill level.

If you have some opinions or suggestions about our online test, please leave your message, we will improve it step by step.

Now, begin to test:

Please go to 210-250 SECFND Online Test-Understanding Cisco Cybersecurity Fundamentals to view the test

 

08 May

210-255 SECOPS Online Test-Implementing Cisco Cybersecurity Operations

Currently, our 210-255 SECOPS online test only provide 10 questions. Answer one question correctly, you can get 10 points. The content of these questions are the latest exam content. Please feel free to test your skill level.

If you have some opinions or suggestions about our online test, please leave your message, we will improve it step by step.

Now, begin to test:

Please go to 210-255 SECOPS Online Test-Implementing Cisco Cybersecurity Operations to view the test

 

 


Recent Posts


Tags

and/or Remove an End-Device and/or Remove an Infrastructure Device and/or Remove Cables (network and/or power) Cisco 642-997 DCUFI exam Cisco 642-999 DCUCI exam Configure Cisco Unity Connection Configure Cisco Unity Express using the GUI Describe and implement centralized call processing redundancy Describe Data Center Structure and Modularity Describe the Design Methodology Describe the Technologies used within the Data Center Describe WLAN Fundamentals Design and Deploy WLAN Infrastructure for Mobility Design Network Management Considerations into a Data Center Design the Access Layer of a Data Center General Networking Knowledge given a Network Design and a set of Requirements High Availability Routing Features Identify Cisco Equipment and Related Hardware Implement high availability features on Cisco Unified Fabric products in a Cisco Data Center Architecture Implement Multicast over Wireless Implement QoS for Wireless Applications Implement VoWLAN Infrastructure Security Infrastructure Services Install Integrate Client Device Security IP Services LAN Switching Technologies Layer 2 Technologies Layer 3 Technologies Maintain Appropriate End-Devices and Industrial Network Infrastructure Devices Manage the Unified Fabric in a Cisco Data Center Architecture Monitoring and Reporting Tools Network Principles Replace Service-Related Knowledge Threat Defense Threat Defense Architectures Troubleshoot Call Setup Issues Troubleshooting Troubleshoot Registration Issues UCS Compute Troubleshooting VPN Technologies WAN Technologies

Links

Powered by CCNP Exams Test Base