Sample Questions
1. What type of alert is logged by Snort by default?
A. All
B. Full
C. Complete
D. None of the above
2. What does the class type refers to as a part of a Snort rule?
A. Where to look for connection
B. Priority helper
C. Unique number
D. None of the above
3. Which of the following is the comment section in a Snort rule?
A. Class type
B. Direction
C. Message
D. None of the above
4. What is the name of default Snort rule updater?
A. Oinkmaster
B. Updater
C. Snortupdater
D. None of the above
5. Which of the following may indicate malware infection in network?
A. DNS queries to gator.com
B. HTTP to yahoo.com
C. HTTP to google.com
D. None of the above
Answers: 1 (B), 2 (B), 3 (C), 4 (A), 5 (A)
More Practice Test at:
Apply for Certification