exam questions

Exam CFR-310 All Questions

View all questions & answers for the CFR-310 exam

Exam CFR-310 topic 1 question 46 discussion

Actual exam question from CertNexus's CFR-310
Question #: 46
Topic #: 1
[All CFR-310 Questions]

After a hacker obtained a shell on a Linux box, the hacker then sends the exfiltrated data via Domain Name System (DNS). This is an example of which type of data exfiltration?

  • A. Covert channels
  • B. File sharing services
  • C. Steganography
  • D. Rogue service
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
044f354
2 months, 4 weeks ago
Selected Answer: A
A. Covert channels Explanation: Covert channels are methods used to secretly transfer data in a way that is not intended or expected. In this case, the hacker is using the DNS protocol, which is typically used for domain name resolution, to secretly exfiltrate data. This is a classic example of using a covert channel to bypass traditional security monitoring, as DNS traffic is often not closely inspected for data exfiltration. Why the other answers are incorrect: B. File sharing services: These involve legitimate or rogue services like Dropbox, Google Drive, etc., for data transfer, not DNS-based exfiltration. C. Steganography: Involves hiding data within other files, like images or audio, not within DNS queries or traffic. D. Rogue service: Refers to unauthorized services running on a system, but it doesn’t specifically describe using DNS as a channel for exfiltration.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago