SECOPS 7: Identifying Malicious Activity Flashcards Preview

CCNA Cyber Ops SECOPS > SECOPS 7: Identifying Malicious Activity > Flashcards

Flashcards in SECOPS 7: Identifying Malicious Activity Deck (8)
Loading flashcards...
1

Deterministic Assessment Method

Known values to yield outcome for each proposed scenario

2

Probabilistic Assessment Method

Consider a wide range of probable scenarios. Less accurate

3

Syslog TAG field

Process that generated the message

4

Syslog CONTENT field

Displays contents of the message

5

ELSA search operators (2)

Boolean + Directives

6

Fast flux

IP address mapping to DNS changes rapidly

7

Double IP Flux

Name server and IP address changes rapidly

8

DGA

Random domain names created rapidly. Often for C2