Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

CCNA Cyber Ops SECOPS > SECOPS 2: NSM Tools and Data > Flashcards

SECOPS 2: NSM Tools and Data Flashcards

1
Q

Session data

A

Summary data for network connections. Who talked to whom and when. Like a phone bill.

5 Tuple with timestamps

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Full Packet Capture format

A

PCAP

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Full content data

A

aka full packet capture

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Transaction data

A

Details associated with requests and responses.

Example: Client GET request and server response

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Alert data

A

Typically from IPS. Network traffic matches conditions to generate alert.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Statistical data

A

Statistics derived from NSM data

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Statistical data over time produces…

A

baselines

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Baselines define

A

what is normal

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Anomalies

A

Deviations from normal

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Metadata

A

Data about data.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Bro produces … but can produce…

A

Session data, but can produce almost any data type (transaction, extracted, alert, etc.)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly

CCNA Cyber Ops SECOPS (19 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions