CompTIA Security+ SY0-601 - 1.7 Nyberg Study Guide
Threat hunting - The process of proactively and iteratively searching through networks to detect and isolate advanced threats that evade existing security solutions. Intelligence Fusion - Collects and examines info from all available sources and intel disciplines to derive as complete of an assessment as possible of detected activity. Threat feeds - Record and track IP addresses and URLs that are associated with phishing scams, malware, bots, trojans, adware, spyware, ransomware and more. Advisories/Bulletins - Alerts associated with current and active threats. Maneuver - A movement or series of moves requiring skill and care. Vulnerability - A flaw or weakness that allows a threat agent to bypass security. Vulnerability scan - A detective control that identifies weaknesses in devices or software. False positive - A non-threatening condition produces an alert. False negative - A threatening condition does not produce an alert. Log file - A record of events. log reviews - An audit of log files to ensure compliance. Credentialed Scan - Includes login information to allow for deeper inspection. non-credentialed scan - Does not include login information. Black box technique. Intrusive scan - Tries to exploit found vulnerabilities. Can crash or alter the remote target. Non-intrusive scan - Reports found vulnerabilities. Application scan - Searches for know exploits within a piece of software. Network scan - Looks for open ports and other vulnerabilities.
Geschreven voor
- Instelling
- CompTIA Security+ SY0-601
- Vak
- CompTIA Security+ SY0-601
Documentinformatie
- Geüpload op
- 2 september 2023
- Aantal pagina's
- 2
- Geschreven in
- 2023/2024
- Type
- Tentamen (uitwerkingen)
- Bevat
- Vragen en antwoorden
Onderwerpen
-
comptia security sy0 601 17 nyberg study guide
Ook beschikbaar in voordeelbundel
