A security analyst discovers the following firewall log entries during an incident:Which of the following is MOST likely occurring?
A security analyst is revising a company's MFA policy to prohibit the use of short message service (SMS) tokens. The Chief Information Officer has questioned this decision and asked for justification. Which of the following should the analyst provide as justification for the new policy?
During an incident response procedure, a security analyst collects a hard drive to analyze a possible vector of compromise. There is a Linux swap partition on the hard drive that needs to be checked. Which of the following should the analyst use to extract human-readable content from the partition?
A consultant is evaluating multiple threat intelligence feeds to assess potential risks for a client. Which of the following is the BEST approach for the consultant to consider when modeling the client's attack surface?
SIMULATION -You are a penetration tester who is reviewing the system hardening guidelines for a company's distribution center. The company's hardening guidelines indicate the following:โ There must be one primary server or service per device.โ Only default ports should be used.โ Non-secure protocols should be disabled.โ The corporate Internet presence should be placed in a protected subnet.INSTRUCTIONS -Using the tools available, discover devices on the corporate network and the services that are running on these devices.You must determine:โ The IP address of each device.โ The primary server or service of each device.โ The protocols that should be disabled based on the hardening guidelines.If at any time you would like to bring back the initial state of the simulation, please click the Reset All button.
Which of the following is the software development process by which function, usability, and scenarios are tested against a known set of base requirements?
