New Year Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: 70percent

Certensure Logo
  1. Home
  2. Fortinet
  3. NSE 7 Network Security Architect
  4. NSE7_ATP-2.5 - Fortinet NSE 7 - Advanced Threat Protection 2.5

Fortinet NSE7_ATP-2.5 Fortinet NSE 7 - Advanced Threat Protection 2.5 Exam Practice Test

Demo: 9 questions
Total 30 questions
Get NSE7_ATP-2.5 Full Access Download NSE7_ATP-2.5 PDF

Fortinet NSE 7 - Advanced Threat Protection 2.5 Questions and Answers

Question 1

Which of the following advanced threat protection are capable of preventing patient-zero infections? (Choose two.)

Options:

A.

FortiWeb and FortiSandbox

B.

FortiClient and FortiSandbox

C.

FortiMail and FortiSandbox

D.

FortiGate and FortiSandbox

Question 2

Which FortiWeb feature supports file submission to FortiSandbox?

Options:

A.

Attack signature

B.

Credential stuffing defense

C.

IP reputation

D.

File security

Question 3

Examine the FortiClient configuration shown in the exhibit. then answer the following question:

What is the general rule you should follow when configuring the Timeout value for files submitted to FortiSandbox?

Options:

A.

It should be long enough for FortiSandbox to complete an antivirus scan of files.

B.

It should be long enough for FortiSandbox to complete a cloud query of file hashes.

C.

It should be long enough for FortiSandbox to complete sandbox analysis of files.

D.

It should be long enough for FortiSandbox to complete a static analysis of files.

Question 4

At which stage of the kill chain will an attacker use tools, such as nmap, ARIN, and banner grabbing, on the targeted organization’s network?

Options:

A.

Exploitation

B.

Reconnaissance

C.

Lateral movement

D.

Weaponization

Question 5

Which of the following are FortiWeb’s roles when integrated with FortiSandbox? (Choose two.)

Options:

A.

Share threat information

B.

Prevent outbreaks

C.

Generate a verdict

D.

Block known threats

Question 6

Examine the FortiGate antivirus logs shown in the exhibit, than answer the following question:

Based on the logs shown, which of the following statements is correct? (Choose two.)

Options:

A.

The fsa_dropper.exe file was blocked using a local black list entry.

B.

The fsa_sample_1.exe file was not sent to FortiSandbox.

C.

The eicar.exe file was blocked using a FortiGiard generated signature.

D.

The fsa_downloader.exe file was not blocked by FortiGate.

Question 7

Examine the scan job report shown in the exhibit, then answer the following question:

Which of the following statements are true regarding this verdict? (Choose two.)

Options:

A.

The file contained malicious JavaScipt.

B.

The file contained a malicious macro.

C.

The file was sandboxed in two-guest VMs.

D.

The file was extracted using sniffer-mode inspection.

Question 8

Which of the kill chain stages does Fortinet’s advanced threat protection solution block? (Choose three.)

Options:

A.

Command and control

B.

Delivery

C.

Reconnaissance

D.

Lateral movement

E.

Weaponization

Question 9

FortiSandbox generates structured threat information exchange (STIX) packages for which of the following threats? (Choose two.)

Options:

A.

Botnet connections

B.

Malware

C.

Intrusion attempts

D.

Malicious URLs

Load More NSE7_ATP-2.5 Questions
Demo: 9 questions
Total 30 questions
Get NSE7_ATP-2.5 Full Access Download NSE7_ATP-2.5 PDF