Logo ExamsQA
Exit
Official Bank 0/126

Performing CyberOps Using Core Security Technologies (CBRCOR) Exam (350-201) - Cisco Actual Exam Questions

Last updated on April 15, 2026

97% Exam Compliance
126 Total Questions
1
Question

Refer to the exhibit. Which command was executed in PowerShell to generate this log?

Question image
Options
A

Get-EventLog -LogName*
B

Get-EventLog -List
C

Get-WinEvent -ListLog* -ComputerName localhost
D

Get-WinEvent -ListLog*
Discussion (0 comments)

to join the discussion

Community Discussion

No discussions yet. Be the first to ask!

2
Question

Refer to the exhibit. An engineer received a report that an attacker has compromised a workstation and gained access to sensitive customer data from the network using insecure protocols. Which action prevents this type of attack in the future?

Question image
Options
A

Use VLANs to segregate zones and the firewall to allow only required services and secured protocols
B

Deploy a SOAR solution and correlate log alerts from customer zones
C

Deploy IDS within sensitive areas and continuously update signatures
D

Use syslog to gather data from multiple sources and detect intrusion logs for timely responses
Discussion (0 comments)

to join the discussion

Community Discussion

No discussions yet. Be the first to ask!

3
Question

Refer to the exhibit. An employee is a victim of a social engineering phone call and installs remote access software to allow an “MS Support” technician to check his machine for malware. The employee becomes suspicious after the remote technician requests payment in the form of gift cards. The employee has copies of multiple, unencrypted database files, over 400 MB each, on his system and is worried that the scammer copied the files off but has no proof of it. The remote technician was connected sometime between 2:00 pm and 3:00 pm over https. What should be determined regarding data loss between the employee’s laptop and the remote technician’s system?

Question image
Options
A

No database files were disclosed
B

The database files were disclosed
C

The database files integrity was violated
D

The database files were intentionally corrupted, and encryption is possible
Discussion (0 comments)

to join the discussion

Community Discussion

No discussions yet. Be the first to ask!

4
Question

A new malware variant is discovered hidden in pirated software that is distributed on the Internet. Executives have asked for an organizational risk assessment. The security officer is given a list of all assets. According to NIST, which two elements are missing to calculate the risk assessment? (Choose two.)

Select 2
Options
A

incident response playbooks
B

asset vulnerability assessment
C

report of staff members with asset relations
D

key assets and executives
E

malware analysis report
Discussion (0 comments)

to join the discussion

Community Discussion

No discussions yet. Be the first to ask!

5
Question

An engineer wants to review the packet overviews of SNORT alerts. When printing the SNORT alerts, all the packet headers are included, and the file is too large to utilize. Which action is needed to correct this problem?

Options
A

Modify the alert rule to “output alert_syslog: output log”
B

Modify the output module rule to “output alert_quick: output filename”
C

Modify the alert rule to “output alert_syslog: output header”
D

Modify the output module rule to “output alert_fast: output filename”
Discussion (0 comments)

to join the discussion

Community Discussion

No discussions yet. Be the first to ask!

Finish Practice?

Are you sure you want to finish? This will end your practice session.