SecurityTech Inc. is developing a TI plan where it can drive more advantages in less funds. In the process of selecting a TI platform, it wants to incorporate a feature that ranks elements such as intelligence sources, threat actors, attacks, and digital assets of the organization, so that it can put in more funds toward the resources which are critical for the organization's security.
Which of the following key features should SecurityTech Inc. consider in their TI plan for selecting the TI platform?

• A.Search
• B.Open
• C.Workflow
• D.Scoring

Comment: *

Name: *

Email: *

Verification: *

Miko was hired as an incident handler in XYZ company. His first task was to identify the PING sweep attempts inside the network. For this purpose, he used Wireshark to analyze the traffic. What filter did he use to identify ICMP ping sweep attempts?

• A.tcp.typc == icmp
• B.icrrip.lype == icmp
• C.icmp.type == 8 or icmp.type ==0
• D.udp.lype - 7

Comment: *

Name: *

Email: *

Verification: *

Eric works as a system administrator at ABC organization and previously granted several users with access privileges to the organizations systems with unlimited permissions. These privileged users could prospectively misuse their rights unintentionally, maliciously, or could be deceived by attackers that could trick them to perform malicious activities. Which of the following guidelines would help incident handlers eradicate insider attacks by privileged users?

• A.Do not allow administrators to use unique accounts during the installation process
• B.Do not enable default administrative accounts to ensure accountability
• C.Do not control the access to administrator ano privileged users
• D.Do not use encryption methods to prevent, administrators and privileged users from accessing backup tapes and sensitive information

Comment: *

Name: *

Email: *

Verification: *

Robert is an incident handler working for Xsecurity Inc. One day, his organization faced a massive cyberattack and all the websites related to the organization went offline. Robert was on duty during the incident and he was responsible to handle the incident and maintain business continuity. He immediately restored the web application service with the help of the existing backups.
According to the scenario, which of the following stages of incident handling and response (IH&R) process does Robert performed?

• A.Evidence gathering and forensics analysis
• B.Eradication
• C.Notification
• D.Recovery

Comment: *

Name: *

Email: *

Verification: *

Bob, an incident responder at CyberTech Solutions, is investigating a cybercrime attack occurred in the client company. He acquired the evidence data, preserved it, and started performing analysis on acquired evidentiary data to identify the source of the crime and the culprit behind the incident.
Identify the forensic investigation phase in which Bob is currently in.

• A.Vulnerability assessment phase
• B.Post-investigation phase
• C.Pre-investigation phase
• D.Investigation phas

Comment: *

Name: *

Email: *

Verification: *