callicon +1 210-504-8191
whatsAppIcon +1 210-504-8191
emailIcon info@koenig-solutions.com
koenig-logo
logo-30-years
Login
koenig-logo
+1 210-504-8191
+1 210-504-8191

Certified SOC Analyst v1 Quiz Questions and Answers

Answer :
  • Monitoring security incidents 24/7 from various SOC entry channels (SIEM, e-mail, firewall, IDS, IPS)

Explanation :

https://www.edusum.com/ec-council/ecsa-ec-council-security-analyst
Answer :
  • $ tailf /var/log/kern.log

Explanation :

Default Location of Log file.
Answer :
  • Anomaly-based detection

Explanation :

Based on previous events.
Answer :
  • 5140

Explanation :

Default Windows Event Id.
Answer :
  • Information

Explanation :

Default Windows Event Id.
Answer :
  • Network Topology

Explanation :

Others are not relevent.
Answer :
  • Rainbow Table Attack

Explanation :

Pre Computed Hash Table.
Answer :
  • Hybrid Attack

Explanation :

Multiple rules togather.
Answer :
  • False Negative Incidents

Explanation :

Attack but NO alert.
Answer :
  • Containment

Explanation :

ECIH Methodology