CompTIA Study Materials
AWS Study Materials
AWS Cloud Practitioner AWS Cloud Practitioner
AWS Cloud Practitioner CLF-C02
Microsoft Study Materials
Microsoft Azure Fundamentals Microsoft Azure Fundamentals
Microsoft Azure Fundamentals AZ-900

Free CompTIA CySA+ CS0-003 Practice Question

While responding to an incident, you've been asked to ensure the data integrity of logs that may contain evidence of malicious activity. What is the first step you should take to validate the integrity of these logs?

  • Take a complete copy of the logs and store them in a secure location before any analysis or hash calculations.

  • Calculate and securely record the hash values of the files and logs using a standardized hashing algorithm.

  • Use a proprietary algorithm to encrypt the files and logs to prevent unauthorized modification.

  • Ensure all logs are time-stamped so that you can validate data was not altered based on the time of recording.

This question is for objective:
Incident Response and Management
Your Score:
Incident Response and Management
Security Operations
Vulnerability Management
Reporting and Communication