Cisco Securing Cisco Networks with Sourcefire Intrusion Prevention System - 500-285 Exam Practice Test

A. has a default value of "all"

B. defines the network the active policy protects

C. is a policy-level variable

D. is used by all rules to define the internal network

A. from the cloud

B. from the Defense Center

C. from the Analysis menu

D. from Context Explorer

A. Global

B. Source

C. Protocol

D. Rule Category

A. Widgets are offered to all users, whereas Context Explorer is limited to a few roles.

B. Widgets offer users an at-a-glance view of their environment.

C. Context Explorer is a tool used primarily by analysts looking for trends across varying periods of time.

D. Context Explorer can be added as a widget to a dashboard.

A. a method of analyzing certain file characteristics, such as metadata and header information, to determine whether a file is malicious or not

B. a method of analyzing the entire contents of a file to determine whether it is malicious or not

C. a method of analyzing a file by executing it in a sandbox environment and observing its behaviors to determine if it is malicious or not

D. a method of analyzing the SHA-256 hash of a file to determine whether a file is malicious or not

A. Maintenance User

B. Administrator

C. Database Administrator

D. Intrusion Administrator