Last Updated on November 16, 2023 by InfraExam
You work as a cybersecurity specialist and provide procurement recommendations. The organization that you are working for would like a package toolset to include at a minimum both intrusion protection and packet capture capabilities. The organization is price-sensitive and is reluctant to purchase any vendor’s proprietary solution. What would be an appropriate solution for your customer?
- Security Onion
- Splunk
- Cisco SecureX
- Wireshark
| Explanation & Hint:
For an organization that is price-sensitive, reluctant to purchase proprietary solutions, and looking for a package toolset that includes both intrusion protection and packet capture capabilities, an appropriate solution would be Security Onion. Security Onion is an open-source platform for network security monitoring. It provides intrusion detection (IDS) capabilities, network traffic analysis, and packet capture features. It’s cost-effective, as it’s based on open-source software, and it can be a suitable choice for organizations that need intrusion protection and packet capture while minimizing expenses on proprietary solutions. |