Question 5As a security analyst, you are monitoring network traffic and detect a large number of failed login attempts. Which of the following tools would help you investigate this incident? Select two answers.1 pointA network protocol analyzer (packet sniffer)An antivirus softwareAn intrusion detection system (IDS)A cryptographic encoder
Question
Question 5As a security analyst, you are monitoring network traffic and detect a large number of failed login attempts. Which of the following tools would help you investigate this incident? Select two answers.1 pointA network protocol analyzer (packet sniffer)An antivirus softwareAn intrusion detection system (IDS)A cryptographic encoder
Solution
The two tools that would be most helpful in investigating a large number of failed login attempts as a security analyst are:
-
A network protocol analyzer (packet sniffer): This tool allows you to capture and interactively browse the traffic running on a computer network. It can be used to capture the packets on the network, which can then be analyzed to find any anomalies or issues. In this case, it can help identify where the login attempts are coming from and what kind of data is being sent.
-
An intrusion detection system (IDS): This tool monitors network traffic for suspicious activity and issues alerts when such activity is discovered. It is used to detect several types of malicious behaviors that can compromise the security and trust of a computer system. This includes network attacks against vulnerable services, data driven attacks on applications, host based attacks such as privilege escalation, unauthorized logins and access to sensitive files, and malware (viruses, trojan horses, and worms). In this case, it can help identify the source of the failed login attempts and possibly prevent further attempts.
Similar Questions
Question 5As a security analyst, you are tasked with auditing your organization's network to identify security related issues. How might a network protocol analyzer (packet sniffer) help you perform this task?1 pointBy automating tasks that reduce human errorBy capturing and analyzing data traffic on the networkBy simulating attacks on connected devicesBy removing malware and viruses from the network
After receiving an alert about a suspicious login attempt, a security analyst can access their _____ to gather information about the alert.1 pointSIEM tool dashboardnetwork protocol analyzer (packet sniffer)internal infrastructureplaybook
James, a security team member, was assessing the security across organizational assets. He identified sudden fluctuations in the bandwidth consumption and repeated login attempts being made from remote hosts. Which of the following types of intrusion attempt James has identified in the above scenario?Group of answer choicesNetwork intrusionsSystem intrusionsFile system intrusionsPhysical intrusions
1.Question 1What tool is designed to capture and analyze data traffic within a network?1 pointplaybooksecurity information and event management (SIEM)Structured Query Language (SQL)network protocol analyzer (packet sniffer)2.Question 2What type of tool uses dashboards to organize data into categories and allows analysts to identify potential security incidents as they happen?1 pointPythonLinuxnetwork protocol analyzers (packet sniffers)SIEM3.Question 3What can cybersecurity professionals use logs for?1 pointTo select which security team members will respond to an incidentTo identify vulnerabilities and potential security breachesTo research and optimize processing capabilities within a networkTo analyze data traffic within a network 4.Question 4Fill in the blank: A _____ is a manual that provides details about operational actions.1 pointchecklistdirectoryplaybookcase history
Question 3What can cybersecurity professionals use logs for?1 pointTo analyze data traffic within a network To identify vulnerabilities and potential security breachesTo research and optimize processing capabilities within a networkTo select which security team members will respond to an incident
Upgrade your grade with Knowee
Get personalized homework help. Review tough concepts in more detail, or go deeper into your topic by exploring other relevant questions.