Weekend Sale Special Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: ac4s65

A threat hunter is identifying potentially malicious activity associated with an APT.

CompTIA CAS-005 Full Course Access
CompTIA CAS-005 View All Questions

A threat hunter is identifying potentially malicious activity associated with an APT. When the threat hunter runs queries against the SIEM platform with a date range of 60 to 90 days ago, the involved account seems to be typically most active in the evenings. When the threat hunter reruns the same query with a date range of 5 to 30 days ago, the account appears to be most active in the early morning. Which of the following techniques is the threat hunter using to better understand the data?

A.

TTP-based inquiries

B.

User behavior analytics

C.

Adversary emulation

D.

OSINT analysis activities

CAS-005 PDF/Engine
  • Printable Format
  • Value of Money
  • 100% Pass Assurance
  • Verified Answers
  • Researched by Industry Experts
  • Based on Real Exams Scenarios
  • 100% Real Questions
buy now CAS-005 pdf
Get 65% Discount on All Products, Use Coupon: "ac4s65"
Next
A security analyst is troubleshooting the reason a specific user is having difficulty accessing company...
A company wants to protect against the most common attacks and rapidly integrate with different...
Previous