CySA+ CS0-001 – Q. 164

0
55

An analyst has noticed unusual activities in the SIEM to a .cn domain name. Which of the following should the analyst use to identify the content of the traffic?

A. Log review
B. Service discovery
C. Packet capture
D. DNS harvesting

LEAVE A REPLY

Please enter your comment!
Please enter your name here