Threat Hunting Flashcards

1
Q

What is Threat Hunting?

A

Cybersecurity method of finding hidden threats not caught by regular security monitoring

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Explain Establishing a Hypothesis in Threat Hunting

A

Predicting high impact, likely events through threat modeling

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Explain Profiling Threat Actors and Activities in Threat Hunting

A

Envisioning how potential attackers might intrude and what they aim to achieve

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What are TTPs?

A

Tactics, techniques, and procedures

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What is Intelligence Fusion and Threat Data?

A

Use SIEM and analysis platforms to spot concerns in the logs and real world security threats

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What are Advisories and Bulletins?

A

Published by vendors and security researchers when new TTP’s and vulnerabilities are discovered

How well did you know this?
1
Not at all
2
3
4
5
Perfectly