• Post author:
  • Post category:Re-Appear
  • Reading time:1 mins read
  • Post last modified:June 12, 2024

How might corporate IT professionals deal with DNS-based cyber threats?

  • Use IPS/IDS devices to scan internal corporate traffic.
  • Monitor DNS proxy server logs and look for unusual DNS queries.
  • Limit the number of DNS queries permitted within the organization.
  • Limit the number of simultaneously opened browsers or browser tabs.
    Answers Explanation & Hints:

    DNS queries for randomly generated domain names or extremely long random-appearing DNS subdomains should be considered suspicious. Cyberanalysts could do the following for DNS-based attacks:Analyze DNS logs.
    Use a passive DNS service to block requests to suspected CnC and exploit domains.

For more Questions and Answers:

CyberOps Associate v1.0 & CA 1.02 Practice Final Exam Answers Full 100%

Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments