1.Question 1Which log source records events related to websites, emails, and file shares, as well as password and username requests?1 pointFirewallReceivingNetworkServer

1.Question 1Which log source records events related to websites, emails, and file shares, as well as password and username requests?1 pointNetworkFirewallReceivingServer2.Question 2Fill in the blank: A security information and _____ management (SIEM) tool is an application that collects and analyzes log data to monitor critical activities in an organization. 1 pointemployeeefficiencyemergencyevent3.Question 3A security professional evaluates a software application by reviewing key technical attributes including response time, availability, and failure rate. What are they using to assess performance?1 pointModelsCloud toolsMetricsIndex standards4.Question 4Fill in the blank: SIEM tools must be configured and _____ to meet each organization's unique security needs.1 pointcustomizedcentralizedreviewedindexed

Question 1Which of the following statements correctly describe logs? Select three answers.1 pointConnections between devices and services on a network are recorded in a firewall log.Outbound requests to the internet from within a network are recorded in a firewall log.Actions such as login requests are recorded in a server log.Security teams monitor logs to identify vulnerabilities and potential data breaches.

1.Question 1What is the primary purpose of logs during incident investigation?1 pointTo improve user experienceTo manage alert volumesTo provide a record of event detailsTo identify and diagnose system issues2.Question 2A security analyst wants to determine whether a suspicious login was successful. Which log type would be most useful for this purpose?1 pointAuthenticationNetworkSystem Firewall3.Question 3In the following log, what action does the log entry record?[ALLOW: wikipedia.org] Source: 192.167.1.1 Friday, 10 June 2022 11:36:121 point192.167.1.1SourceALLOWFriday, 10 June 2022 11:36:124.Question 4Fill in the blank: _____ is the process of examining logs to identify events of interest. 1 pointLog analysisLoggingLog forwarderLog file

Which of the following types of information can an attacker capture using a sniffing tool?Usernames and passwordsOperating system logsBrowser historyFirewall rules

What are security event logs commonly based on when sourced by traditional firewalls?application analysisstatic filteringsignatures5-tuplesNavigation Bar