350-701 · Question #222
Drag and Drop Question Drag and drop the suspicious patterns for the Cisco Tetration platform from the left onto the correct definitions on the right. Answer:
The correct answer is interesting file access; file access from a different user; user login suspicious behavior; privilege escalation. In Cisco Tetration's behavioral analysis, each suspicious pattern maps to a specific definition: 'interesting file access' refers to access to sensitive or monitored files (e.g., /etc/passwd), 'file access from a different user' detects when a process accesses files owned by or n
Question
Exhibit
Answer Area
Drag items
Correct arrangement
- interesting file access
- file access from a different user
- user login suspicious behavior
- privilege escalation
Explanation
In Cisco Tetration's behavioral analysis, each suspicious pattern maps to a specific definition: 'interesting file access' refers to access to sensitive or monitored files (e.g., /etc/passwd), 'file access from a different user' detects when a process accesses files owned by or normally accessed by a different user, 'user login suspicious behavior' flags anomalous login activity such as unusual times or locations, and 'privilege escalation' identifies attempts by a process or user to gain elevated permissions beyond their baseline. The correct arrangement matches each pattern to its precise behavioral definition as categorized by Tetration's unsupervised machine learning and policy enforcement engine.
Topics
Community Discussion
No community discussion yet for this question.
