CompTIA Study Materials
AWS Study Materials
AWS Certified Developer Associate AWS Certified Developer Associate
AWS Certified Developer Associate DVA-C02
AWS Certified Solutions Architect Associate AWS Certified Solutions Architect Associate
AWS Certified Solutions Architect Associate SAA-C03
AWS Cloud Practitioner AWS Cloud Practitioner
AWS Cloud Practitioner CLF-C02
Microsoft Study Materials
Microsoft Azure Fundamentals Microsoft Azure Fundamentals
Microsoft Azure Fundamentals AZ-900

Free CompTIA Security+ SY0-701 Practice Question

A security analyst is reviewing the logs from an intrusion detection system (IDS) and needs to correlate these logs with network traffic to understand the scope of a suspected breach. Which of the following will provide the MOST useful information for correlating the time of the suspicious IDS alerts with the network traffic captured?

  • Traffic flow metadata collected from network devices such as switches and routers

  • Application error messages captured by the system's event logs

  • Device configuration settings from the network management system

  • User account changes logged in the authentication server records

This question's topic:
CompTIA Security+ SY0-701 / 
Security Operations
Your Score:
Security Operations
General Security Concepts
Threats, Vulnerabilities, and Mitigations
Security Architecture
Security Program Management and Oversight