CompTIA Cybersecurity Analyst (CySA+) CS0-002 Cert Guide, 2nd Edition

Chapter 11

Analyzing Data as Part of Security Monitoring Activities

This chapter covers the following topics related to Objective 3.1 (Given a scenario, analyze data as part of security monitoring activities) of the CompTIA Cybersecurity Analyst (CySA+) CS0-002 certification exam:

Heuristics: Discusses how the heuristics process works.
Trend analysis: Covers the use of trend data.
Endpoint: Topics include malware, memory, system and application behavior, file system, and user and entity behavior analytics (UEBA).
Network: Covers URL and DNS analysis, flow analysis, and packet and protocol analysis.
Log review: Includes event logs, Syslog, firewall logs, web application firewall (WAF), proxy, and intrusion detection system (IDS)/intrusion prevention ...

Get CompTIA Cybersecurity Analyst (CySA+) CS0-002 Cert Guide, 2nd Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

CompTIA Cybersecurity Analyst (CySA+) CS0-002 Cert Guide, 2nd Edition by Troy McMillan

Chapter 11

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly