300-735 Online Practice Questions and Answers

DRAG DROP

Drag and drop the items to complete the ThreatGRID API call to return a curated feed of sinkholed-ip-dns in stix format. Not all options are used.

Select and Place:

DRAG DROP

A Python script is being developed to return the top 10 identities in an organization that have made a DNS request to "www.cisco.com".

Drag and drop the code to complete the Cisco Umbrella Reporting API query to return the top identities. Not all options are used.

Select and Place:

DRAG DROP

Drag and drop the code to complete the curl query to the Cisco Umbrella Investigate API for the Latest Malicious Domains for the IP address 10.10.20.50. Not all options are used.

Select and Place:

DRAG DROP Drag and drop the items to complete the curl request to the ThreatGRID API. The API call should request the first 10 IP addresses that ThreatGRID saw samples communicate with during analysis, in the first two hours of January 18th (UTC time), where those communications triggered a Behavior Indicator that had a confidence equal to or higher than 75 and a severity equal to or higher than 95.

Select and Place:

Which description of synchronous calls to an API is true?

A. They can be used only within single-threaded processes.

B. They pause execution and wait for the response.

C. They always successfully return within a fixed time.

D. They can be used only for small requests.

When the URI "/api/fmc_config/v1/domain/e276abec-e0f2-11e3-8169-6d9ed49b625f/policy/accesspolicies" is used to make a POST request, what does "e276abec-e0f2-11e3-8169-6d9ed49b625f" represent?

A. API token

B. domain UUID

C. access policy UUID

D. object UUID

Which two URI parameters are needed for the Cisco Stealthwatch Top Alarm Host v1 API? (Choose two.)

A. startAbsolute

B. externalGeos

C. tenantId

D. intervalLength

E. tagID

Refer to the exhibit.

A Python function named "query" has been developed and the goal is to use it to query the service "com.cisco.ise.session" via Cisco pxGrid 2.0 APIs.

How is the function called, if the goal is to identify the sessions that are associated with the IP address 10.0.0.50?

A. query(config, secret, "getSessionByIpAddress/10.0.0.50", "ipAddress")

B. query(config, "10.0.0.50", url, payload)

C. query(config, secret, url, "10.0.0.50")

D. query(config, secret, url, '{"ipAddress": "10.0.0.50"}')

Which API capability is available on Cisco Firepower devices?

A. Firepower Management Center - Sockets API

B. Firepower Management Center - eStreamer API

C. Firepower Management Center - Camera API

D. Firepower Management Center - Host Output API

Which API is designed to give technology partners the ability to send security events from their platform/service/appliance within a mutual customer's environment to the Umbrella cloud for enforcement?

A. Cisco Umbrella Management API

B. Cisco Umbrella Security Events API

C. Cisco Umbrella Enforcement API

D. Cisco Umbrella Reporting API

Refer to the exhibit.

The script outputs too many results when it is queried against the Cisco Umbrella Reporting API.

Which two configurations restrict the returned result to only 10 entries? (Choose two.)

A. Add params parameter in the get and assign in the {"return": "10"} value.

B. Add ?limit=10 to the end of the URL string.

C. Add params parameter in the get and assign in the {"limit": "10"} value.

D. Add ?find=10 to the end of the URL string.

E. Add ?return=10 to the end of the URL string.

The Cisco Security Management Appliance API is used to make a GET call using the URI /sma/api/v2.0/reporting/mail_incoming_traffic_summary/detected_amp?startDate=2016-09-10T19:00:00.000ZandendDate=2018-0924T23:00:00.000Zanddevice_type=esaanddevice_name=esa01.

What does this GET call return?

A. values of all counters of a counter group, with the device group name and device type for web

B. value of a specific counter from a counter group, with the device name and type for email

C. value of a specific counter from a counter group, with the device name and type for web

D. values of all counters of a counter group, with the device group name and device type for email

Which two APIs are available from Cisco ThreatGRID? (Choose two.)

A. Access

B. User Scope

C. Data

D. Domains

E. Curated Feeds

Which two commands create a new local source code branch? (Choose two.)

A. git checkout -b new_branch

B. git branch -b new_branch

C. git checkout -f new_branch

D. git branch new_branch

E. git branch -m new_branch

Refer to the exhibit. A network operator wrote a Python script to retrieve events from Cisco AMP.

Against which API gateway must the operator make the request?

A. BASE_URL = "https://api.amp.cisco.com"

B. BASE_URL = "https://amp.cisco.com/api"

C. BASE_URL = "https://amp.cisco.com/api/"

D. BASE_URL = "https://api.amp.cisco.com/"