Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

FSDA > Chapter_11_CVE's and IoC's > Flashcards

Chapter_11_CVE's and IoC's Flashcards

1
Q

What part of Silent Defense runs the CVE and IoC checks?

A

The Industrial Threat Library (ITL) contains the CVE and IoC checks

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

When updating the CVE and IOC databases, what should be checked?

A

The synchronization status of each database for all Sensors

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What blacklists are checked by the Network Indicators of Compromise (IoCs)?

A

DNS domains, IP address, file operations, &SSL client applications

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

How are file Indicators of Compromise (IoC’s) checked?

A

YARA rules and malicious file hashes

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

How often are CVE and IOC updates published byForescout?

A

Monthly

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

How do you update them in a SilentDefense deployment?

A

From Settings > Services > CVE and IOCs > Import submenu button

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Once updated, what should be done?

A

Sync and scan historical network logs

How well did you know this?
1
Not at all
2
3
4
5
Perfectly

FSDA (15 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions