CompTIA Security+ SY0-601 - 1.7 Nyberg Study Guide
Threat hunting - The process of proactively and iteratively searching through networks to detect and isolate advanced threats that evade existing security solutions. Intelligence Fusion - Collects and examines info from all available sources and intel disciplines to derive as complete of an assessment as possible of detected activity. Threat feeds - Record and track IP addresses and URLs that are associated with phishing scams, malware, bots, trojans, adware, spyware, ransomware and more. Advisories/Bulletins - Alerts associated with current and active threats. Maneuver - A movement or series of moves requiring skill and care. Vulnerability - A flaw or weakness that allows a threat agent to bypass security. Vulnerability scan - A detective control that identifies weaknesses in devices or software. False positive - A non-threatening condition produces an alert. False negative - A threatening condition does not produce an alert. Log file - A record of events. log reviews - An audit of log files to ensure compliance. Credentialed Scan - Includes login information to allow for deeper inspection. non-credentialed scan - Does not include login information. Black box technique. Intrusive scan - Tries to exploit found vulnerabilities. Can crash or alter the remote target. Non-intrusive scan - Reports found vulnerabilities. Application scan - Searches for know exploits within a piece of software. Network scan - Looks for open ports and other vulnerabilities.
Written for
- Institution
- CompTIA Security+ SY0-601
- Course
- CompTIA Security+ SY0-601
Document information
- Uploaded on
- September 2, 2023
- Number of pages
- 2
- Written in
- 2023/2024
- Type
- Exam (elaborations)
- Contains
- Questions & answers
Subjects
-
comptia security sy0 601 17 nyberg study guide
Also available in package deal
