Threat Hunting Flashcards
1
Q
What is Threat Hunting?
A
Cybersecurity method of finding hidden threats not caught by regular security monitoring
2
Q
Explain Establishing a Hypothesis in Threat Hunting
A
Predicting high impact, likely events through threat modeling
3
Q
Explain Profiling Threat Actors and Activities in Threat Hunting
A
Envisioning how potential attackers might intrude and what they aim to achieve
4
Q
What are TTPs?
A
Tactics, techniques, and procedures
5
Q
What is Intelligence Fusion and Threat Data?
A
Use SIEM and analysis platforms to spot concerns in the logs and real world security threats
6
Q
What are Advisories and Bulletins?
A
Published by vendors and security researchers when new TTP’s and vulnerabilities are discovered