Free Eccouncil 312-39 Exam Actual Questions

The questions for 312-39 were last updated On Nov 6, 2024

Question No. 1

Which of the following attack can be eradicated by disabling of "allow_url_fopen and allow_url_include" in the php.ini file?

Show Answer Hide Answer
Correct Answer: A


Question No. 2

An organization is implementing and deploying the SIEM with following capabilities.

What kind of SIEM deployment architecture the organization is planning to implement?

Show Answer Hide Answer
Correct Answer: C


Question No. 3

InfoSystem LLC, a US-based company, is establishing an in-house SOC. John has been given the responsibility to finalize strategy, policies, and procedures for the SOC.

Identify the job role of John.

Show Answer Hide Answer
Correct Answer: B

Question No. 4

What does [-n] in the following checkpoint firewall log syntax represents?

fw log [-f [-t]] [-n] [-l] [-o] [-c action] [-h host] [-s starttime] [-e endtime] [-b starttime endtime] [-u unification_scheme_file] [-m unification_mode(initial|semi|raw)] [-a] [-k (alert name|all)] [-g] [logfile]

Show Answer Hide Answer
Correct Answer: A

Question No. 5

Which of the log storage method arranges event logs in the form of a circular buffer?

Show Answer Hide Answer
Correct Answer: D