200-201 • Practice Test 33
Free 200-201 practice test — 15 questions with explanations. Set 33. No signup required.
A security analyst is investigating an alert from a host-based intrusion detection system (HIDS) that detected a file modification in the system32 directory. Which log source should the analyst check first to understand the process that made the change?