Cisco Updated 100-160 Exam Questions and Answers by aida

TheCCST Cybersecurity Study GuideidentifiesSYN flood attacksas a type ofDenial of Service (DoS)attack that exploits the TCP three-way handshake. Attackers send many SYN requests without completing the handshake, leaving the server with numerous half-open connections and exhausting resources.

"A TCP SYN flood attack overwhelms a target server by initiating a high volume of TCP connections but never completing the handshake, resulting in numerous half-open connections that consume system resources and can render the service unavailable."

(CCST Cybersecurity,Incident Handling, Denial-of-Service Attacks section, Cisco Networking Academy)

Ais correct: The proper action is to stop the SYN flood, often using firewalls, intrusion prevention systems, or SYN cookies.

B(switching to HTTPS) does not address the flooding issue.

Cis incorrect because the excessive number of half-open connections indicates an attack, not normal operation.

D(flushing DNS cache) is unrelated to this type of attack.

According to theCCST Cybersecurity Study Guide, firmware updates are a critical security maintenance task because vulnerabilities in firmware can be exploited by attackers to gain persistent control over hardware.

"Keeping firmware up to date is necessary to patch security vulnerabilities and weaknesses that could be exploited by threat actors. Vendors release firmware updates to correct security flaws, enhance stability, and ensure compatibility with updated security protocols."

(CCST Cybersecurity,Endpoint Security Concepts, System and Firmware Maintenance section, Cisco Networking Academy)

Ais partially true but not the primary security reason for updates.

Bis incorrect because firmware is not part of the OS kernel; it’s embedded in the hardware.

Cis correct: patching vulnerabilities in firmware is essential for endpoint protection.

Dmay occur as a side benefit, but it’s not the main reason from a cybersecurity perspective.

TheCCST Cybersecuritycourse identifiesWindows PowerShellas both a command-line interface (CLI) and a robust scripting environment. It is used by system administrators for automation, configuration, and task scheduling.

"PowerShell is a Windows command-line shell and scripting language built on the .NET framework. It allows administrators to automate administrative tasks, manage system configurations, and execute complex scripts for system management."

(CCST Cybersecurity,Endpoint Security Concepts, System Administration Tools section, Cisco Networking Academy)

Ais correct: PowerShell provides both interactive command execution and scripting capabilities.

B(MMC) is a GUI-based management console, not a CLI.

C(Vim) is a text editor, not a Windows-native CLI.

D(MS-DOS) is a legacy command shell with no advanced scripting features comparable to PowerShell.

TheCCST Cybersecurity Study Guideexplains thatCVSS (Common Vulnerability Scoring System)is a standardized method for rating the severity of software vulnerabilities. It considers exploitability, impact, and environmental factors.

"The Common Vulnerability Scoring System (CVSS) provides a numerical score that reflects the severity of a vulnerability, enabling prioritization of remediation efforts."

(CCST Cybersecurity,Vulnerability Assessment and Risk Management, Vulnerability Scoring section, Cisco Networking Academy)