最新的GIAC Enterprise Incident Response - GEIR免費考試真題
Which file in macOS stores user-specific preferences for applications?
Response:
Response:
正確答案: B
Which features should be prioritized when developing an incident response strategy for macOS systems?
(Choose Two)
Response:
(Choose Two)
Response:
正確答案: C,D
What is the FIRST step an incident responder should take after identifying an anomaly that could indicate a modern attack?
Response:
Response:
正確答案: C
How can an attacker exploit a misconfigured container?
Response:
Response:
正確答案: B
What types of data sources are instrumental in scoping malware spread within an enterprise network?
Response:
Response:
正確答案: A,C
Which of the following are common data sources in an enterprise environment that can aid in incident scoping?
Response:
Response:
正確答案: B,C,D,E
Which of the following best describes the concept of 'proactive threat hunting'?
Response:
Response:
正確答案: D
What is the role of Incident Response (IR) playbooks in cloud incident management?
Response:
Response:
正確答案: C
What utility in macOS allows for detailed viewing of system and application logs?
Response:
Response:
正確答案: A