QUALYS VMDR TRAINING EXAM ACTUAL EXAM 130 QUESTIONS AND CORRECT DETAILED ANSWERS
WITH RATIONALES
Which of the following are benefits of scanning in authenticated mode? (choose 2) - 1. More
vulnerabilities are detected
2. Time saved from manually investigating potential vulnerabilities
Which of the following are valid options for scanning targets? (choose 3) - 1. Asset Groups
2. IP addressing
3. Asset Tags
What type of scanner appliance (already provisioned within the Qualys Cloud Platform) is ideal for
scanning public facing assets? - External Scanner
Which of the following is NOT a component of a vulnerability scan? - Host Discovery
Which of the following will have the greatest impact on a half red, half yellow QID? - Authentication
What is the maximum number of TCP ports that can participate in the Host Discovery process? - 20
Which of the following items are used to calculate the Business Risk score for a particular asset group?
(choose 2) - Business Impact
Security Risk
In order to successfully perform an authenticated (trusted) scan, you must create a(n): - Authentication
record
Multiple Remediation Policies are evaluated: - from top to bottom
,A search list contains a list of . - QIDs
Dynamic Asset Tags are updated every time you. - Run a scan
As a Manager in Qualys, which activities can be scheduled? - Asset Searches
Updates to the KnowledgeBase
Maps
Reports
Scans
What does it mean when a "pencil" icon is associated with a QID in the Qualys KnowledgeBase? - The
QID has been edited
Which item is not mandatory for launching a vulnerability scan? - Authentication record
About how many services can Qualys detect via the Service Detection Module? - 600
By default, the first user added to a new Business Unit becomes a ____________ for that unit. - Unit
manager
In a new Option Profile, which authentication options are enabled by default? - none
Which of the following vulnerability scanning options requires the use of a "dissolvable agent"? -
Windows Share Enumeration
To produce a scan report that includes the results from a specific scan that occurred at a specific point in
time, you should select the _______________ option in the Report Template. - Host Based Findings
About how many TCP ports are scanned when using Standard Scan option? - 1900
,Asset Groups and Asset Tags can be used to effectively customize or fine tune - Reports
Vulnerability Scans
Remediation Policies
What is required in order for Qualys to generate remediation tickets? - Scan Results need to be
processed by Qualys
A Policy needs to be created
Before you can scan an IP address for vulnerabilities, the IP address must first be added to the. - Hosts
assets tab
What is the 6-step lifecycle of Qualys Vulnerability Management? - Discover, Organize Assets, Assess,
Report, Remediate, Verify
Which of the following components are included in the raw scan results, assuming you do not apply a
Search List to your Option Profile? - Potential Vulnerabilities
Information Gathered
Vulnerabilities
Which of the following types of items can be found in the Qualys KnowledgeBase? - Potential
Vulnerabilities
Configuration data (Information Gathered)
Confirmed Vulnerabilities
Which three features of the Vulnerability Management application can be customized using a
KnowledgeBase "Search List"? - Report Templates
Remediation Policies
Option Profiles
, What type of Search List adds new QIDs to the list when the Qualys KnowledgeBase is updated? -
Dynamic
When a host is removed from your subscription, the Host Based Findings for that host are. - PurgedWhat
are the greatest risks for transport? - (ANSWER)Loss of airway patency, displaced obstructive tubes lines
or catheters, dislodge splinting devices, need to replace or reinforce dressings, deterioration in patient
status change in vital signs or level of consciousness, injury to the patient and/or team members
According to newtons law which of these two force is greater: size or force? - (ANSWER)Neither. For each
force there is an equal and opposite reaction.
What is the relationship between mass and velocity to kinetic energy? - (ANSWER)Kinetic energy is equal
to 1/2 the mass multiplied the square of its velocity therefore when mass is doubled so is the net energy,
however, when velocity is doubled energy is quadrupled.
What is tension? - (ANSWER)stretching force by pulling at opposite ends
What is compression? - (ANSWER)Crushing by squeezing together
What is bending? - (ANSWER)Loading about an axis. Bending causes compression on the side the person
is bending toward intention to the opposite side
What is shearing? - (ANSWER)Damage by tearing or bending by exerting faucet different parts in
opposite directions at the same time.
What is torsion? - (ANSWER)Torsion forces twist ends in opposite directions.
What is combined loading? - (ANSWER)Any combination of tension compression torsion bending and/or
shear.
What are the four types of trauma related injuries? - (ANSWER)Blunt, penetrating, thermal, or blast.
WITH RATIONALES
Which of the following are benefits of scanning in authenticated mode? (choose 2) - 1. More
vulnerabilities are detected
2. Time saved from manually investigating potential vulnerabilities
Which of the following are valid options for scanning targets? (choose 3) - 1. Asset Groups
2. IP addressing
3. Asset Tags
What type of scanner appliance (already provisioned within the Qualys Cloud Platform) is ideal for
scanning public facing assets? - External Scanner
Which of the following is NOT a component of a vulnerability scan? - Host Discovery
Which of the following will have the greatest impact on a half red, half yellow QID? - Authentication
What is the maximum number of TCP ports that can participate in the Host Discovery process? - 20
Which of the following items are used to calculate the Business Risk score for a particular asset group?
(choose 2) - Business Impact
Security Risk
In order to successfully perform an authenticated (trusted) scan, you must create a(n): - Authentication
record
Multiple Remediation Policies are evaluated: - from top to bottom
,A search list contains a list of . - QIDs
Dynamic Asset Tags are updated every time you. - Run a scan
As a Manager in Qualys, which activities can be scheduled? - Asset Searches
Updates to the KnowledgeBase
Maps
Reports
Scans
What does it mean when a "pencil" icon is associated with a QID in the Qualys KnowledgeBase? - The
QID has been edited
Which item is not mandatory for launching a vulnerability scan? - Authentication record
About how many services can Qualys detect via the Service Detection Module? - 600
By default, the first user added to a new Business Unit becomes a ____________ for that unit. - Unit
manager
In a new Option Profile, which authentication options are enabled by default? - none
Which of the following vulnerability scanning options requires the use of a "dissolvable agent"? -
Windows Share Enumeration
To produce a scan report that includes the results from a specific scan that occurred at a specific point in
time, you should select the _______________ option in the Report Template. - Host Based Findings
About how many TCP ports are scanned when using Standard Scan option? - 1900
,Asset Groups and Asset Tags can be used to effectively customize or fine tune - Reports
Vulnerability Scans
Remediation Policies
What is required in order for Qualys to generate remediation tickets? - Scan Results need to be
processed by Qualys
A Policy needs to be created
Before you can scan an IP address for vulnerabilities, the IP address must first be added to the. - Hosts
assets tab
What is the 6-step lifecycle of Qualys Vulnerability Management? - Discover, Organize Assets, Assess,
Report, Remediate, Verify
Which of the following components are included in the raw scan results, assuming you do not apply a
Search List to your Option Profile? - Potential Vulnerabilities
Information Gathered
Vulnerabilities
Which of the following types of items can be found in the Qualys KnowledgeBase? - Potential
Vulnerabilities
Configuration data (Information Gathered)
Confirmed Vulnerabilities
Which three features of the Vulnerability Management application can be customized using a
KnowledgeBase "Search List"? - Report Templates
Remediation Policies
Option Profiles
, What type of Search List adds new QIDs to the list when the Qualys KnowledgeBase is updated? -
Dynamic
When a host is removed from your subscription, the Host Based Findings for that host are. - PurgedWhat
are the greatest risks for transport? - (ANSWER)Loss of airway patency, displaced obstructive tubes lines
or catheters, dislodge splinting devices, need to replace or reinforce dressings, deterioration in patient
status change in vital signs or level of consciousness, injury to the patient and/or team members
According to newtons law which of these two force is greater: size or force? - (ANSWER)Neither. For each
force there is an equal and opposite reaction.
What is the relationship between mass and velocity to kinetic energy? - (ANSWER)Kinetic energy is equal
to 1/2 the mass multiplied the square of its velocity therefore when mass is doubled so is the net energy,
however, when velocity is doubled energy is quadrupled.
What is tension? - (ANSWER)stretching force by pulling at opposite ends
What is compression? - (ANSWER)Crushing by squeezing together
What is bending? - (ANSWER)Loading about an axis. Bending causes compression on the side the person
is bending toward intention to the opposite side
What is shearing? - (ANSWER)Damage by tearing or bending by exerting faucet different parts in
opposite directions at the same time.
What is torsion? - (ANSWER)Torsion forces twist ends in opposite directions.
What is combined loading? - (ANSWER)Any combination of tension compression torsion bending and/or
shear.
What are the four types of trauma related injuries? - (ANSWER)Blunt, penetrating, thermal, or blast.
