Chapter 7
Summarizing the Techniques Used in Security Assessments
This chapter covers the following topics related to Objective 1.7 (Summarize the techniques used in security assessments) of the CompTIA Security+ SY0-601 certification exam:
Threat hunting
Intelligence fusion
Threat feeds
Advisories and bulletins
Maneuver
Vulnerability scans
False positives
False negatives
Log reviews
Credentialed vs. non-credentialed
Intrusive vs. non-intrusive
Application
Web application
Network
Common Vulnerabilities and Exposures (CVE) and Common Vulnerability Scoring System (CVSS)
Configuration review
Syslog/Security information and event management (SIEM)
Review reports
Packet capture
Data inputs
User behavior analysis
Sentiment analysis
Security monitoring ...
Get CompTIA Security+ SY0-601 Cert Guide, 5th Edition now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
