Multiple Choice
A false positive can be defined as…
A) An alert that indicates nefarious activity on a system that, upon further inspection, turns out to represent legitimate network traffic or behavior.
B) An alert that indicates nefarious activity on a system that is not running on the network.
C) The lack of an alert for nefarious activity.
D) Both a. and b.
Correct Answer:
Verified
Correct Answer:
Verified
Q3: In what type of attack does an
Q4: Which of the following is NOT recommended
Q5: _ is an electronic or paper log
Q6: This is the name for a group
Q7: This is an assault on the integrity
Q9: In which of the following exploits does
Q10: This technology is used to measure and
Q11: What is the purpose of a shadow
Q12: Which of the following is characteristic of
Q13: This is a mechanism for ensuring that