After reviewing the following packet, a cybersecurity analyst has discovered an unauthorized service is running on a company's computer. Which of the following ACLs, if implemented, will prevent further access ONLY to the unauthorized service and will not impact other services?

Questions › Category: CS0-001 › After reviewing the following packet, a cybersecurity analyst has discovered an unauthorized service is running on a company's computer. Which of the following ACLs, if implemented, will prevent further access ONLY to the unauthorized service and will not impact other services?

0 Vote Up Vote Down

Admin Staff asked 6 months ago

After reviewing the following packet, a cybersecurity analyst has discovered an unauthorized service is running on a company's computer.
 
Which of the following ACLs, if implemented, will prevent further access ONLY to the unauthorized service and will not impact other services?

A. DENY TCP ANY HOST 10.38.219.20 EQ 3389

B. DENY IP HOST 10.38.219.20 ANY EQ 25

C. DENY IP HOST192.168.1.10 HOST 10.38.219.20 EQ 3389

D. DENY TCP ANY HOST 192.168.1.10 EQ 25








 

Suggested Answer: A





This question is in CS0-001 CompTIA Cybersecurity Analyst (CySA+) Exam
For getting CompTIA Cybersecurity Analyst (CySA+) Certificate



Disclaimers:
The website is not related to, affiliated with, endorsed or authorized by CompTIA. 
Trademarks, certification & product names are used for reference only and belong to CompTIA.
The website does not contain actual questions and answers from CompTIA's Certification Exams.

After reviewing the following packet, a cybersecurity analyst has discovered an unauthorized service is running on a company's computer. Which of the following ACLs, if implemented, will prevent further access ONLY to the unauthorized service and will not impact other services?

A cybersecurity analyst has several SIEM event logs to review for possible APT activity. The analyst was given several items that include lists of indicators for both IP addresses and domains. Which of the following actions is the BEST approach for the analyst to perform?

AZ-104 Practice Test Free

Recommended

AZ-104 Practice Test Free

Cisco IOS Popular Commands

Linux Professional Institute LPIC-2 Certificate

Linux Professional Institute LPIC-1 Certificate

Cisco Certified DevNet Associate Certificate

AWS Certified Cloud Practitioner Certificate

Welcome Back!

Create New Account!

Retrieve your password

After reviewing the following packet, a cybersecurity analyst has discovered an unauthorized service is running on a company's computer. Which of the following ACLs, if implemented, will prevent further access ONLY to the unauthorized service and will not impact other services?

A cybersecurity analyst has several SIEM event logs to review for possible APT activity. The analyst was given several items that include lists of indicators for both IP addresses and domains. Which of the following actions is the BEST approach for the analyst to perform?

AZ-104 Practice Test Free

Related Questions

Recommended

AZ-104 Practice Test Free

Cisco IOS Popular Commands

Linux Professional Institute LPIC-2 Certificate

Linux Professional Institute LPIC-1 Certificate

Cisco Certified DevNet Associate Certificate

AWS Certified Cloud Practitioner Certificate

Welcome Back!

Create New Account!

Retrieve your password