Unit 6 - Module 2 - Network Analysis Flashcards
What do you call the amount of data that moves across a network?
Network Traffic
What do you call data that’s transmitted between devices on a network?
Network Data
What do you call observable evidence that suggests signs of a potential security incident?
Indicators of compromise (IOC)
What is the unauthorized transmission of data from a system?
Data Exfiltration
What do you call the normal or expected behaviour?
A Baseline
What are techniques used by a malicious actors to maintain communications with compromised systems?
Command and Control (C2)
What operations center is responsible for maintaining network performance, availbility, and uptime?
Network Operations Center (NOC)
What operations center monitors systems against security threats and attacks?
Security Operations Centers (SOC)
What are security analysts that monitor networks to identify any signs of potential security incidents called?
Indicators of compromise (IoC)
What are tools designed to capture and analyze data also known as packet sniffers?
Network Protocol Analyzers
When kind of measures would you call this?
Prevent Attack Access
Monitor Network Activity
Protect Assets
Detect and stop the exfiltration
Defensive Measures
What is a tool designed to capture and analyze data traffic within a network?
Network protocol analyzer ( Packet Sniffer )
What is a file containing data packets intercepted from an interface or network?
Packet Capture (P-cap)
What is hardware that connects computers to a netowork, like a router?
Network Interface Card (NIC)
These 4 formats, what are they?
1) Libpcap
2) WinPcap
3) Npcap
4) PCAPng
Packet Sniffers
