CompTIA Exam SY0-601 Topic 4 Question 7 Discussion

Actual exam question for CompTIA's SY0-601 exam

Question #: 7
Topic #: 4

An organization blocks user access to command-line interpreters but hackers still managed to invoke the interpreters using native administrative tools Which of the following should the security team do to prevent this from Happening in the future?

AImplement HIPS to block Inbound and outbound SMB ports 139 and 445.

BTrigger a SIEM alert whenever the native OS tools are executed by the user

CDisable the built-in OS utilities as long as they are not needed for functionality.

DConfigure the AV to quarantine the native OS tools whenever they are executed

Show Suggested Answer

Suggested Answer: C

by Junita at May 05, 2022, 08:18 PM

Limited Time Offer

25%

Off

Get Premium SY0-601 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Currently there are no comments in this discussion, be the first to comment!