CAS-005 · Question #269
CAS-005 Question #269: Real Exam Question with Answer & Explanation
Sign in or unlock CAS-005 to reveal the answer and full explanation for question #269. The question stem and answer options stay visible for context.
Question
An organization has noticed an increase in phishing campaigns utilizing typosquatting. A security analyst needs to enrich the data for commonly used domains against the domains used in phishing campaigns. The analyst uses a log forwarder to forward network logs to the SIEM. Which of the following would allow the security analyst to perform this analysis?
Options
- AUse a cron job to regularly update and compare domains.
- BCreate a parser that matches domains.
- CDevelop a query that filters out all matching domain names.
- DImplement a dashboard on the SIEM that shows the percentage of traffic by domain.
Unlock CAS-005 to see the answer
You've previewed enough free CAS-005 questions. Unlock CAS-005 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.