Terminal PBQs: Understanding Cisco Cybersecurity Operations Fundamentals (200-201)
easyQuestion 1 of 20
You are a SOC analyst investigating a potentially compromised host on the certnova network. Your team lead has asked you to examine the local user accounts on this Linux system to determine if any unauthorized accounts have been created. Navigate to the appropriate system configuration file, review the user accounts, and identify any suspicious entries that should not be present on a standard web server.
Objectives
- •Review the system's user account database for unauthorized entries
- •Determine which accounts have interactive shell access
bash
analyst@certnova:/$
Type commands and press Enter to execute. Use ↑↓ to navigate history. Ctrl+C to cancel, Ctrl+L to clear.
Progress
0 of 2 steps detectedRun at least one command to mark this question complete
0 of 20 marked complete