200-201 Security Monitoring • 30 Questions
30 200-201 Security Monitoring practice questions with answers and explanations. Free, no signup.
An analyst notices repeated failed SSH attempts from an external IP to a server. The analyst wants to quickly see all SSH-related events from that IP in the last hour. Which approach is most efficient?