CompTIA CyberSecurity Analyst CySA+ Certification Exam CS0-003 Question # 38 Topic 4 Discussion

CS0-003 Exam Topic 4 Question 38 Discussion:

Question #: 38

Topic #: 4

A SOC receives several alerts indicating user accounts are connecting to the company’s identity provider through non-secure communications. User credentials for accessing sensitive, business-critical systems could be exposed. Which of the following logs should the SOC use when determining malicious intent?

DNS

tcpdump

Contribute your Thoughts:

Chosen Answer: A B C D
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.

Spring Sale Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: simple70

CompTIA CyberSecurity Analyst CySA+ Certification Exam CS0-003 Question # 38 Topic 4 Discussion

CompTIA CyberSecurity Analyst CySA+ Certification Exam CS0-003 Question # 38 Topic 4 Discussion

Correct Answer:

Options Selected by Other Users:

Contribute your Thoughts:

Spring Sale Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: simple70

CompTIA CyberSecurity Analyst CySA+ Certification Exam CS0-003 Question # 38 Topic 4 Discussion

CompTIA CyberSecurity Analyst CySA+ Certification Exam CS0-003 Question # 38 Topic 4 Discussion

Correct Answer:

Options Selected by Other Users:

Contribute your Thoughts:

Awaiting moderator approval