SPLK-5001試験無料問題集（68題）「Splunk Certified Cybersecurity Defense Analyst 認定」

出題：1

Which of the following is not considered an Indicator of Compromise (IOC)?

A. A specific domain that is utilized for phishing.

B. A specific file hash of a malicious executable.

C. A specific password for a compromised account.

D. A specific IP address used in a cyberattack.

正解：C 解答を投票する

出題：2

An organization is using Risk-Based Alerting (RBA). During the past few days, a user account generated multiple risk observations. Splunk refers to this account as what type of entity?

A. Risk Analysis

B. Risk Object

C. Risk Factor

D. Risk Index

正解：D 解答を投票する

出題：3

A Cyber Threat Intelligence (CTI) team produces a report detailing a specific threat actor's typical behaviors and intent. This would be an example of what type of intelligence?

A. Tactical

B. Strategic

C. Executive

D. Operational

正解：B 解答を投票する

出題：4

Which of the following is the primary benefit of using the CIM in Splunk?

A. It enables the use of advanced machine learning algorithms.

B. It automatically detects and blocks cyber threats.

C. It allows for easier correlation of data from different sources.

D. It improves the performance of search queries on raw data.

正解：C 解答を投票する

出題：5

Which of the following is a tactic used by attackers, rather than a technique?

A. Establishing persistence with a scheduled task.

B. Gathering information about a target.

C. Escalating privileges via UAC bypass.

D. Using a phishing email to gain initial access.

正解：B 解答を投票する

出題：6

When threat hunting for outliers in Splunk, which of the following SPL pipelines would filter for users with over a thousand occurrences?

A. | sort by user | where count > 1000

B. | stats count by user | where count > 1000 | sort - count

C. | top user

D. | stats count(user) | sort - count | where count > 1000

正解：B 解答を投票する

出題：7

A Cyber Threat Intelligence (CTI) team delivers a briefing to the CISO detailing their view of the threat landscape the organization faces. This is an example of what type of Threat Intelligence?

A. Tactical

B. Strategic

C. Executive

D. Operational

正解：B 解答を投票する

SPLK-5001試験無料問題集「Splunk Certified Cybersecurity Defense Analyst 認定」