EC-Council CTIA Module 6.9 Practice Test 003

This practice test covers Module 6 (Intelligence Reporting and Dissemination) Sub-module 9 (Threat Intelligence Sharing and Collaboration using Python Scripting).

These questions are inspired by the EC-Council CTIA exam and are designed to help you test your knowledge of cyber threat intelligence, threats and frameworks, and other related topics. Some questions require multiple correct answers.

These are not official exam questions or brain dumps. They are original scenario-based questions created to reflect the skills and knowledge tested in the CTIA exam.

Note: CTIA is a registered trademark of EC-Council. This content is not affiliated with or endorsed by EC-Council.

To choose CTIA practice tests based on specific modules and sub-modules, click that link

EC-Council CTIA Practice Test of the Day 260702
10 questions • Single best answer
Question 1
A CTI developer at a government agency writes Python to pull indicators from a TAXII server and post them to partners on a schedule. A reviewer asks the benefit. What does scripting mainly provide?
    Question 2
    An analyst scripts a client that must connect to a partner's TAXII service to fetch collections. A colleague names the required library type. What should the script use?
      Question 3
      A CTI engineer wants shared output that other tools can parse regardless of vendor. A colleague names the format the script should emit. Which representation fits?
        Question 4
        A developer's sharing script hardcodes an API key directly in the source committed to a repo. A reviewer flags a risk. What should the script do instead?
          Question 5
          A CTI team scripts automatic sharing but wants only high-confidence indicators sent to partners. An analyst names the step to add. What should the script apply first?
            Question 6
            An engineer builds a script to distribute YARA rules to detection sensors automatically. A colleague asks the rules' purpose. What do YARA rules mainly enable?
              Question 7
              A CTI script posts indicators to a partner API but must handle occasional server timeouts gracefully. A reviewer names the practice. What should the script implement?
                Question 8
                A developer wants the sharing script to run automatically each hour without manual launching. A colleague names the mechanism. What should be used?
                  Question 9
                  A CTI script must authenticate to a partner TAXII server before uploading. A reviewer asks what the server checks. What confirms the script's identity?
                    Question 10
                    A new developer asks why the team scripts sharing rather than exchanging spreadsheets by email. The lead answers concisely. Which benefit is most accurate?

                      Leave a Comment

                      Your email address will not be published. Required fields are marked *

                      Scroll to Top