اختبار شهادة امن المعلومات CompTIA Security+

الخيارات

• A Analyze firewall and network logs for large amounts of outbound traffic to external IP addresses or domains
• B Analyze IPS and IDS logs to find the IP addresses used by the attacker for reconnaissance scans.
• C Analyze endpoint and application logs to see whether file-sharing programs were running on the company systems
• D Analyze external vulnerability scans and automated reports to identify the systems the attacker could have exploited a remote code vulnerability.