- Which of the following is not a part of the security monitoring framework?
- Log collector
- Security monitoring
- Threat intelligence
- Encryption
- What kinds of logs will help security monitoring?
- Application logs
- Host security logs
- Vulnerability scanning results
- All of the above
- Which of the following facts is not directly related to web security?
- Client IP is from blacklisted IP
- User-agent is associated with suspicious clients
- Unusual mail receivers or senders
- Too many errors in the weblogs, such as 401, 404, 500
- Which one of the following tools is not a log collector/sensor?
- Syslog
- Kibana
- FileBeat
- LogStash
- What is Security Onion used for?
- It's an all-in-one security scanning and monitoring tool (host, network, visualization) ...