Splunk SPLK-5001 Splunk Certified Cybersecurity Defense Analyst Exam Exam Practice Test Questions

• Question 1

  What goal of an Advanced Persistent Threat (APT) group aims to disrupt or damage on behalf of a cause?

  • Hacktivism
  • Cyber espionage
  • Financial gain
  • Prestige

  Show Answer Answer: A Next

• Question 2

  An analyst notices that one of their servers is sending an unusually large amount of traffic, gigabytes more than normal, to a single system on the Internet. There doesn’t seem to be any associated increase in incoming traffic.What type of threat actor activity might this represent?

  • Data exfiltration
  • Network reconnaissance
  • Data infiltration
  • Lateral movement

  Show Answer Answer: A Next

• Question 3

  Which of the following is a tactic used by attackers, rather than a technique?

  • Gathering information about a target.
  • Establishing persistence with a scheduled task.
  • Using a phishing email to gain initial access.
  • Escalating privileges via UAC bypass.

  Show Answer Answer: A Next

• Question 4

  Which of the following is not considered an Indicator of Compromise (IOC)?

  • A specific domain that is utilized for phishing.
  • A specific IP address used in a cyberattack.
  • A specific file hash of a malicious executable.
  • A specific password for a compromised account.

  Show Answer Answer: D Next

• Question 5

  A Cyber Threat Intelligence (CTI) team produces a report detailing a specific threat actor’s typical behaviors and intent. This would be an example of what type of intelligence?

  • Operational
  • Executive
  • Tactical
  • Strategic

  Show Answer Answer: D Next