You work as a SOC analyst. Which option is an element... server?

You work as a SOC analyst. Which option is an element of the security architecture that might report on beaconing activity between an infected host and a botnet command-and-control server?

Post author:InfraExam
Post category:Uncategorized
Post comments:0 Comments
Reading time:1 mins read

Last Updated on November 16, 2023 by InfraExam

You work as a SOC analyst. Which option is an element of the security architecture that might report on beaconing activity between an infected host and a botnet command-and-control server?

sandbox
vulnerability scan
IPS
external router with firewall configured

Explanation & Hint:

The element of the security architecture that might report on beaconing activity between an infected host and a botnet command-and-control server is an Intrusion Prevention System (IPS).

IPS is designed to monitor network traffic for malicious activity, including communication patterns between infected hosts and known command-and-control servers. When it detects beaconing or suspicious traffic, it can generate alerts or block the communication, thus providing a layer of defense against botnet activity and other network-based threats.

For more Questions and Answers:

Security Operations Center Post-Assessment | CBROPS

0 0 votes

Article Rating

You work as a SOC analyst. Which option is an element of the security architecture that might report on beaconing activity between an infected host and a botnet command-and-control server?

For more Questions and Answers:

Security Operations Center Post-Assessment | CBROPS

You Might Also Like

A corporation has expanded to include multiple remote offices around the globe. Which technology should be used to allow the remote offices to communicate and share network resources privately?

What is a characteristic of thermal inkjet nozzles?