Full width home advertisement

Post Page Advertisement [Top]

I work in email and malware analysis project of US based Mssp. I have no experience in SOC/IR. So in one interview, they asked a question "Assume your organisation do not have EDR and SIEM tools, only a firewall. One endpoint is infected by a ransomware and constantly communicates with its C2s. How will you find out that one infected endpoint in firewall ?" submitted by /u/Terminator996
[link] [comments]


http://dlvr.it/T6QS21

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)
'; (function() { var dsq = document.createElement('script'); dsq.type = 'text/javascript'; dsq.async = true; dsq.src = '//' + disqus_shortname + '.disqus.com/embed.js'; (document.getElementsByTagName('head')[0] || document.getElementsByTagName('body')[0]).appendChild(dsq); })();

Bottom Ad [Post Page]

Copyright 2017, " Vpentest ". All rights Reserved.
| Designed by Colorlib