A cyber security analyst is reviewing security alerts in Sguil. What are three pieces of information included in an alert to identify the device generating the alert? (Choose three.)

IT Questions BankCategory: Cybersecurity EssentialsA cyber security analyst is reviewing security alerts in Sguil. What are three pieces of information included in an alert to identify the device generating the alert? (Choose three.)

A cyber security analyst is reviewing security alerts in Sguil. What are three pieces of information included in an alert to identify the device generating the alert? (Choose three.)

  • IP protocol number
  • source and destination MAC address
  • source and destination Layer 4 port
  • source and destination IP address
  • Layer 4 segment sequence number
  • host domain name

Explanation: Sguil provides a console to view alerts generated by network security monitoring tools. The alerts will usually include five-tuples of information and time stamps. The five-tuples include the source and destination IP address, source and destination Layer 4 ports, and the IP protocol number.

Exam with this question: Cybersecurity Pathway Final Exam Answers

Subscribe
Notify of
guest

0 Comments
Inline Feedbacks
View all comments