CompTIA Study Materials
AWS Study Materials
AWS Certified Developer Associate AWS Certified Developer Associate
AWS Certified Developer Associate DVA-C02
AWS Certified Solutions Architect Associate AWS Certified Solutions Architect Associate
AWS Certified Solutions Architect Associate SAA-C03
AWS Cloud Practitioner AWS Cloud Practitioner
AWS Cloud Practitioner CLF-C02
Microsoft Study Materials
Microsoft Azure Fundamentals Microsoft Azure Fundamentals
Microsoft Azure Fundamentals AZ-900

Free CompTIA CySA+ CS0-003 Practice Question

During an incident analysis session, a security analyst is charting out an intrusion based on the intersection of different elements like the tools used, the infrastructure leveraged for attack execution, and the profile of the threat actor. Without explicitly classifying these elements, the analyst is attempting to recognize patterns and adversaries through correlating disparate but related events. Which analysis framework aligns with the analyst's approach for gaining actionable intelligence?

  • Indicators of Compromise (IoCs) framework

  • Preparation phase of Incident Response lifecycle

  • Adversary Tactics, Techniques, and Common Knowledge (ATT&CK)

  • Diamond Model of Intrusion Analysis

This question's topic:
CompTIA CySA+ CS0-003 / 
Incident Response and Management
Your Score:
Incident Response and Management
Security Operations
Vulnerability Management
Reporting and Communication