Home
CompTIA
CompTIA Security+ SY0-701
Study Mode

CompTIA Security+ SY0-701 Practice Question

Which data source would an investigator most likely review to trace unauthorized internal traffic patterns indicative of post-breach attacker movement?

Application logs
System health reports
Network logs
Endpoint logs

Next Question

Correct Incorrect Unanswered

Report Issue

Answer Description

Network logs are a primary resource for monitoring internal network traffic, which includes tracking unauthorized data flow or lateral movement within the organization’s network infrastructure. Application logs are focused on specific software and may not capture network-wide traffic data. Endpoint logs give insight into individual host activity and might not show comprehensive internal traffic patterns. System health reports are typically concerned with the performance and health of systems, and do not usually provide the granular traffic data needed for tracking lateral movements.

Ask Bash

Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.

What types of information can be found in network logs?

Open an interactive chat with Bash

How do attackers utilize network logs for lateral movement?

Open an interactive chat with Bash

What are some limitations of relying solely on network logs?

Open an interactive chat with Bash

CompTIA Security+ SY0-701

Security Operations

Your Score:

Settings & Objectives

General Security Concepts

Threats, Vulnerabilities, and Mitigations

Security Architecture

Security Operations

Security Program Management and Oversight

Random Mode

Random Mixed

Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.

Rotate by Objective

Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Hide Score

Check or uncheck an objective to set which questions you will receive.

Wipe Score

Report Issue

SAVE $49

CompTIA Security+ Voucher (SY0-701)

$404.00 $355.00

Bash, the Crucial Exams Chat Bot

AI Bot