3.0 Incident Response and Management Flashcards by Dontay Gibson

Q

Cyber kill chains

A

How well did you know this?

1

Not at all

2

3

4

5

Perfectly

Q

Diamond Model of Intrusion Analysis

A

How well did you know this?

1

Not at all

2

3

4

5

Perfectly

Q

MITRE ATT&CK

A

How well did you know this?

1

Not at all

2

3

4

5

Perfectly

Q

Open Source Security Testing Methodology Manual (OSS TMM)

A

How well did you know this?

1

Not at all

2

3

4

5

Perfectly

Q

OWASP Testing Guide

A

How well did you know this?

1

Not at all

2

3

4

5

Perfectly

Q

IoC

A

How well did you know this?

1

Not at all

2

3

4

5

Perfectly

Q

Chain of custody

A

How well did you know this?

1

Not at all

2

3

4

5

Perfectly

Q

Validating data integrity

A

How well did you know this?

1

Not at all

2

3

4

5

Perfectly

Q

Preservation

A

How well did you know this?

1

Not at all

2

3

4

5

Perfectly

Q

Legal hold

A

How well did you know this?

1

Not at all

2

3

4

5

Perfectly

Q

Data and log analysis

A

How well did you know this?

1

Not at all

2

3

4

5

Perfectly

Q

Containment, eradication, and recovery

A

How well did you know this?

1

Not at all

2

3

4

5

Perfectly

Q

Scope

A

How well did you know this?

1

Not at all

2

3

4

5

Perfectly

Q

Impact

A

How well did you know this?

1

Not at all

2

3

4

5

Perfectly

Q

Isolation

A

How well did you know this?

1

Not at all

2

3

4

5

Perfectly

Q

Remediation

A

Q

Re-imaging

A

Q

Compensating controls

A

Q

Preparation

A

Q

Incident response plan

A

Q

Tools

A

Q

Playbooks

A

Q

Tabletop

A

Q

Training

A

Q

Business continuity (BC)/disaster recovery (DR)

A

Q

Post incident activity

A

Q

Forensic analysis

A

Q

Root cause analysis

A

Q

Lessons learned

A