Chapter 7 Network-Based Malware Detection

THE SSFIPS EXAM TOPICS COVERED IN THIS CHAPTER INCLUDE THE FOLLOWING:

  • ✓ 6.0 Network-Based Malware Detection
  • ✓ 6.1 Describe the interface components used for analyzing malware events
  • ✓ 6.2 Understand the different techniques used to identify malware
  • ✓ 6.3 Describe the features of malware detection as used by the Cisco NGIPS, including communication, actions, and protocols

FireSIGHT's Advanced Malware Protection (AMP) is designed to tackle one of the worst and arguably most prevalent threat vectors today—malware! Nicknamed from the term malicious software, malware comes in a variety of vile flavors, from coded weapons fashioned to damage, control, or disable a computer system to programs that perform ...

Get SSFIPS Securing Cisco Networks with Sourcefire Intrusion Prevention System Study Guide: Exam 500-285 now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.