최신 C2150-199 무료덤프 - IBM Security AppScan Standard Edition Implementation v8.7

문제1

The application you are testing contains links to external websites. You want to restrict the scan to the designated web application URL.
Which configuration option should you use?

A. Edit the hosts file to map the production website to the test website.

B. Add links to external website to the Exclude Paths list.

C. AppScan automatically identifies the website during a test.

D. Enable Scan only links in and below this directory.

정답: D

설명: (DumpTOP 회원만 볼 수 있음)

문제2

An AppScan user captured the following URLs during a recorded login:
http://www.altoromutual.com/ http://www.altoromutual.com/login.jsp http://www.altoromutual.com/doLogin https://www.altoromutual.com/bank/main.jsp
The same user selected an in-session detection pattern of "Hello John Smith".
Given that the "Hello John Smith" string only appears on the in-session page (main.jsp).
Will AppScan be able to stay in-session and successfully scan the application?

A. No. the in-session page is HTTPS and cannot be interpreted by AppScan.

B. Yes, AppScan does not check the in-session pattern as a means of validating the session.

C. Yes, AppScan will send the request for the in-session page and detect the in-session pattern.

D. No, the in-session detection pattern needs to appear on every page of the application.

정답: C

문제3

You need a template-based report of all the issue ID and variants found by a scan. How should you create this?

A. <AS:lssueTypeRepeaterStart> <AS:VariantlD> <AS:VariantTestRequest> <AS:lssueTypeRepeaterEnd>

B. <AS:lssueTypeRepeaterStart> <AS:lssueRepeaterStart> <AS:VariantlD> <AS:VariantTestRequest> <AS:lssueRepeaterEnd> <AS:lssueTypeRepeaterEnd>

C. <AS:lssueTypeRepeaterStatt> <AS:RemediationRepeaterStart> <AS:VariantlD> <AS:VariantTestRequest> <AS:RemediationRepeaterEnd> <AS:lssueTypeRepeaterEnd>

D. <AS:lssueTypeRepeaterStart> <AS:VuInerableRepeaterStart> <AS:VariantlD> <AS:VariantTestRequest> <AS:VulnerableRepeaterEnd> <AS:IssueTypeRepeaterEnd>

정답: B

문제4

What are two acceptable methods to protect sensitive user data?

A. URL Encoding

B. AES Encryption

C. DES Encryption

D. Hashing

E. Base 64 Encoding

정답: A,E

문제5

In the Automatic Form Fill window, if the URL field is blank for a particular row, which value will be passed for that row's parameter?

A. That row's parameter value

B. The value of the "Fill unknown fields with" box

C. Blank

D. The parameter will be skipped.

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제6

What are the two main components of the Glass Box agent?

A. gbAgent.jar Java agent

B. glassbox_agentjar Java agent

C. G Bootstrap .war web application

D. GBApp.war web application

E. glassbox_server.war web application

정답: C,E

최신 C2150-199 무료덤프 - IBM Security AppScan Standard Edition Implementation v8.7

우리와 연락하기

유용한 링크

최신 업데이트