Which of the following should the analyst use to confirm this suspicion?

CAS-003 0 Comments

A forensics analyst suspects that a breach has occurred. Security logs show the company’s OS patch system may be compromised, and it is serving patches that contain a zero-day exploit and backdoor. The analyst extracts an executable file from a packet capture of communication between a client computer and the patch server.

Which of the following should the analyst use to confirm this suspicion?
A . File size
B . Digital signature
C . Checksums
D . Anti-malware software
E . Sandboxing

Answer: B

Latest CAS-003 Dumps Valid Version with 509 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Instant Download CAS-003 PDF     CAS-003 Questions Online Training
Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments