Description
Exam Name: Conducting Forensic Analysis and Incident Response Using Cisco CyberOps Technologies
Exam Code: 300-215 CBRFIR
Related Certification(s): Cisco Certified CyberOps Professional Certification
Certification Provider: Cisco
Number of 300-215 practice questions in our database:
Expected 300-215 Exam Topics, as suggested by Cisco :
- Module 1: Describe capabilities of Cisco security solutions related to threat intelligence/ Recognize encoding and obfuscation techniques
- Module 2: Recommend a response based on intelligence artifacts/ Analyze the components needed for a root cause analysis report
- Module 3: Evaluate elements required in an incident response playbook/ Determine the type of code based on a provided snippet
- Module 4: Recommend actions based on post-incident analysis/ Describe the issues related to gathering evidence from virtualized environments
- Module 5: Evaluate the relevant components from the ThreatGrid report/ Recognize the methods identified in the MITRE attack framework to perform fileless malware analysis
- Module 6: Describe the process of performing forensics analysis of infrastructure network devices/ Interpret binaries using objdump and other CLI tools
- Module 7: Analyze threat intelligence provided in different formats/ Determine the files needed and their location on the host
- Module 8: Determine attack vectors or attack surface and recommend mitigation in a given scenario/ Describe the goals of incident response
- Module 9: Analyze logs from modern web applications and servers/ Determine data to correlate based on incident type
- Module 10: Recommend a response to 0 day exploitations/ Evaluate artifacts from threat intelligence to determine the threat actor profile
Reviews
There are no reviews yet.