Which of the following activities would be a part of retrospective analysis?

Last Updated on August 1, 2021 by Admin 2

200-201 : All Parts

200-201 : Understanding Cisco Cybersecurity Operations Fundamentals (CBROPS) : All Parts
200-201 Part 01	200-201 Part 04
200-201 Part 02	200-201 Part 05
200-201 Part 03	200-201 Part 06

Which of the following activities would be a part of retrospective analysis?

scanning for vulnerabilities with NESSUS
using historical data to identify an infected host
using nmap to determine open ports
attempting to exploit a vulnerability you found

Explanation:
Whenever you use historical data from logs to help identify a breach of any sort, you are engaged in retrospective analysis. A retrospective analysis is permed when the outcome of an event is already known, such as attempting to discover when identified malware first entered your system. GigaStor Security Forensics is another example of a tool that performs retrospective analysis.

Using nmap to determine open ports is a part of network discovery stage of a penetration test. by identifying the open ports, potential attacks may be identified before they occur.

Scanning for vulnerabilities with NESSUS is a part of a vulnerability test. Attempting to exploit a vulnerability is a later stage in the penetration test.

200-201 : All Parts

200-201 : Understanding Cisco Cybersecurity Operations Fundamentals (CBROPS) : All Parts
200-201 Part 01	200-201 Part 04
200-201 Part 02	200-201 Part 05
200-201 Part 03	200-201 Part 06

0 0 votes

Article Rating

0 Comments

Inline Feedbacks

View all comments

Which of the following activities would be a part of retrospective analysis?

You Might Also Like

Of the following, which is the BEST control against this risk?

Management is extremely sensitive to cost but agrees that the application should be highly available. What should a solutions architect recommend?

Which of the following is the appropriate ordering of the critical path?