Fortinet NSE 7 - Advanced Threat Protection 2.5 試験
【2024桜まつりキャンペーン】:NSE7_ATP-2.5 最新真題を買う時、日本語版と英語版両方を同時に獲得できます。
実際の問題集を練習し、試験のポイントを了解し、テストに申し込むするかどうかを決めることができます。
さらに試験準備時間の35%を節約するには、NSE7_ATP-2.5 問題集を使用してください。
Question No : 1
Which advanced threat protection integration solution should you use to protect against out-of-band attack vectors, such as USB drives, used during the delivery stage of the kill chain?
正解:
Explanation:
Reference: https://www.infosecpartners.com/fortimail-fortisandbox-perfect-partners/
Question No : 2
Examine the Suspicious Indicators section of the scan job shown in the exhibit, then answer the following question:
Which FortiSandbox component identified the vulnerability exploits?
正解:
Question No : 3
Which of the advanced threat protection solutions should you use to protect against an attacker may take during the lateral movement stage of the kill chain? (Choose two.)
正解:
Question No : 4
When using FortiSandbox in sniffer-mode, you should configure FortiSandbox to inspect both inbound and outbound traffic.
What type of threats can FortiSandbox detect on inbound traffic? (Choose two.)
正解:
Question No : 5
Which of the following are features of network share scanning of FortiSandbox? (Choose two.)
正解:
Explanation:
Reference:
https://help.fortinet.com/fsandbox/olh/2-5-1/Document/900_Scan%20Input/900_Network%20Share/100_Network%20Share.htm
Question No : 6
Which of the kill chain stages does Fortinet’s advanced threat protection solution block? (Choose three.)
正解:
Question No : 7
Examine the System Information widget shown in the exhibit, then answer the following question:
Which of the following inspections will FortiSandbox perform on samples submitted for sandboxing? (Choose two.)
正解:
Explanation:
Reference:
https://passport.exclusive-networks.it/upload/workdoc/ATP%20Webinar%20-%20Wide.pdf
Note: Page # 35
Question No : 8
FortiGate root VDOM is authorized and configured to send suspicious files to FortiSandbox for inspection. The administrator creates a new VDOM, and then generates some traffic so that the new VDOM sends a file to FortiSandbox for the first time.
Which of the following is true regarding this scenario?
正解:
Question No : 9
At which stage of the kill chain will an attacker use tools, such as nmap, ARIN, and banner grabbing, on the targeted organization’s network?
正解:
Question No : 10
Examine the FortiGate antivirus logs shown in the exhibit, than answer the following question:
Based on the logs shown, which of the following statements is correct? (Choose two.)
正解:
Question No : 11
Which samples can FortiClient submit to FortiSandbox for analysis? (Choose two.)
正解:
Explanation:
FortiClient supports integration with FortiSandbox, including on-premise FortiSandbox appliances and FortiSandbox Cloud. When configured, FortiSandbox automatically scans files downloaded on the endpoint or from removable media attached to the endpoint or mapped network drives. FortiClient also automatically scans files downloaded with an email client on the endpoint or from the Internet. In each case, if the file is not detected locally, and FortiSandbox integration is configured, FortiClient sends the file to the FortiSandbox for further analysis. Endpoint users can also manually submit files to FortiSandbox for scanning. Reference: https://docs.fortinet.com/document/forticlient/6.2.2/administration-guide/554226/sandboxdetection
Question No : 12
Examine the FortiSandbox Scan Profile configuration shown in the exhibit, and then answer the following question:
Based on the configuration, which of the following statements are true? (Choose two.)
正解: