<< Prev Question Next Question >>

Question 20/71

Johnson an incident handler is working on a recent web application attack faced by the organization. As part of this process, he performed data preprocessing in order to analyzing and detecting the watering hole attack. He preprocessed the outbound network traffic data collected from firewalls and proxy servers and started analyzing the user activities within a certain time period to create time-ordered domain sequences to perform further analysis on sequential patterns.
Identify the data-preprocessing step performed by Johnson.

LEAVE A REPLY

Your email address will not be published. Required fields are marked *

Question List (71q)
Question 1: A user downloaded what appears to be genuine software. Unkno...
Question 2: Rinni is an incident handler and she is performing memory du...
Question 3: Which of the following is an attack that occurs when a malic...
Question 4: Patrick is doing a cyber forensic investigation. He is in th...
Question 5: Eric is an incident responder and is working on developing i...
Question 6: Which of the following is a term that describes the combinat...
Question 7: According to NITS, what are the 5 main actors in cloud compu...
Question 8: Shally, an incident handler, is working for a company named ...
Question 9: Which of the following has been used to evade IDS and IPS?...
Question 10: Sam received an alert through an email monitoring tool indic...
Question 11: What is the most recent NIST standard for incident response?...
Question 12: Which of the following is defined as the identification of t...
Question 13: Malicious Micky has moved from the delivery stage to the exp...
Question 14: Rica works as an incident handler for an international compa...
Question 15: Attackers or insiders create a backdoor into a trusted netwo...
Question 16: Eric works as an incident handler at Erinol software systems...
Question 17: Eric works as a system administrator in ABC organization. He...
Question 18: Stanley works as an incident responder at a top MNC based in...
Question 19: An attacker after performing an attack decided to wipe evide...
Question 20: Johnson an incident handler is working on a recent web appli...
Question 21: Shiela is working at night as an incident handler. During a ...
Question 22: Otis is an incident handler working in Delmont organization....
Question 23: Francis is an incident handler and security expert. He works...
Question 24: Stenley is an incident handler working for Texa Corp. locate...
Question 25: Which of the following is not called volatile data?...
Question 26: Alice is a disgruntled employee. She decided to acquire crit...
Question 27: Which of the following terms refers to vulnerable account ma...
Question 28: Which of the following is NOT a network forensic tool?...
Question 29: John is performing memory dump analysis in order to find out...
Question 30: Which of the following is an attack that attempts to prevent...
Question 31: Which of the following processes is referred to as an approa...
Question 32: Employee monitoring tools are mostly used by employers to fi...
Question 33: Which of the following are malicious software programs that ...
Question 34: In which of the following phases of incident handling and re...
Question 35: Rose is an incident-handling person and she is responsible f...
Question 36: An organization named Sam Morison Inc. decided to use cloud-...
Question 37: Which of the following information security personnel handle...
Question 38: Which of the following is the BEST method to prevent email i...
Question 39: An insider threat response plan helps an organization minimi...
Question 40: Otis is an incident handler working in an organization calle...
Question 41: Nervous Nat often sends emails with screenshots of what he t...
Question 42: QualTech Solutions is a leading security services enterprise...
Question 43: Which of the following methods help incident responders to r...
Question 44: During the vulnerability assessment phase, the incident resp...
Question 45: Bran is an incident handler who is assessing the network of ...
Question 46: Clark, a professional hacker, exploited the web application ...
Question 47: Which of the following email security tools can be used by a...
Question 48: Which of the following is a term that describes the combinat...
Question 49: Your company sells SaaS, and your company itself is hosted i...
Question 50: Raven is a part of an IH&amp;R team and was informed by her ...
Question 51: After a recent email attack, Harry is analyzing the incident...
Question 52: Dan is a newly appointed information security professional i...
Question 53: Ikeo Corp, hired an incident response team to assess the ent...
Question 54: Which of the following terms refers to an organization's abi...
Question 55: Which of the following is not a countermeasure to eradicate ...
Question 56: Joseph is an incident handling and response (IH&amp;R) team ...
Question 57: In which of the following phases of the incident handling an...
Question 58: Which of the following risk mitigation strategies involves e...
Question 59: Which of the following techniques helps incident handlers to...
Question 60: Jason is setting up a computer forensics lab and must perfor...
Question 61: Which of the following is a common tool used to help detect ...
Question 62: Which of the following risk mitigation strategies involves t...
Question 63: James has been appointed as an incident handling and respons...
Question 64: Mike is an incident handler for PNP Infosystems Inc. One day...
Question 65: Which of the following techniques prevent or mislead inciden...
Question 66: Alice is an incident handler and she has been informed by he...
Question 67: In which of the following types of insider threats an inside...
Question 68: Sam. an employee of a multinational company, sends emails to...
Question 69: Identify the network security incident where intended or aut...
Question 70: Bran is an incident handler who is assessing the network of ...
Question 71: You are a systems administrator for a company. You are acces...