اضغط هنا للانضمام الى قروب فوجي للإختبارات على تيليقرام

اختبار شهادة محلل الأمن السيبراني CompTIA CySA+

السؤال 804 من 1040

كل الأسئلة

An analyst is investigating a phishing incident and has retrieved the following as part of the investigation: cmd.exe /c c:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe -WindowStyle Hidden -ExecutionPolicy Bypass -NoLogo -NoProfile -EncodedCommand Which of the following should the analyst use to gather more information about the purpose of this command?

الخيارات

  • A Echo the command payload content into 'base64 -d'.
  • B Execute the command from a Windows VM.
  • C Use a command console with administrator privileges to execute the code.
  • D Run the command as an unprivileged user from the analyst workstation.

النقاشات

لا توجد نقاشات منشورة لهذا السؤال حالياً.