200-201 Host-Based Analysis • 10 Questions
10 200-201 Host-Based Analysis practice questions with answers and explanations. Free, no signup.
A security analyst is investigating a host that is suspected of being used as a pivot point in a network intrusion. The analyst needs to identify which process initiated an outbound connection to a known malicious IP address. Which host-based analysis approach should the analyst use to correlate the network connection to the specific process?