Загрузка...

SOC alert: large volumes of DNS queries to an unusual external domain. Encoded data in the subdomain

SOC alert: large volumes of DNS queries to an unusual external domain. Encoded data in the subdomain field. What type of attack? A) ARP spoofing B) DNS cache poisoning C) BGP hijacking D) DNS tunneling. Answer: D. DNS tunneling hides data exfiltration inside DNS queries. The subdomain carries the payload — legitimate resolvers forward it without inspection. ARP spoofing and cache poisoning are LAN-level attacks. BGP hijacking is routing-level. Security Operations domain. CompTIA Security+.

Practice COMPTIA-SEC free: https://pass-it.ai/certifications/COMPTIA-SEC

#securityplus #comptia #cybersecurity #certprep #Shorts

Видео SOC alert: large volumes of DNS queries to an unusual external domain. Encoded data in the subdomain канала Pass-IT
Shorts certprep comptia cybersecurity securityplus
Комментарии отсутствуют
Зарегистрируйтесь или войдите с
Информация о видео
9 ч. 15 мин. назад
00:00:25
Pass-IT
Теги
Правообладателям
Жалоба на материал Недопустимый материал Нарушение авторских прав
Комментарии
Поделиться
Другие видео канала

Private GCP VM, no external IP. It needs to pull packages from the internet — which service makes thPrivate GCP VM, no external IP. It needs to pull packages from the internet — which service makes th

Myth: if VNet A is peered with VNet B, and VNet B is peered with VNet C — A can reach C. #ShortsMyth: if VNet A is peered with VNet B, and VNet B is peered with VNet C — A can reach C. #Shorts

A DynamoDB table uses userId as the only partition key. A new query needs to find users by email addA DynamoDB table uses userId as the only partition key. A new query needs to find users by email add

EC2 needs S3 access. Security says no long-term credentials stored anywhere. Which solution? #ShortsEC2 needs S3 access. Security says no long-term credentials stored anywhere. Which solution? #Shorts

Myth: private GCP VMs need Cloud VPN to reach the internet. #ShortsMyth: private GCP VMs need Cloud VPN to reach the internet. #Shorts

Myth: Azure admins need permanent Owner or Contributor role to manage resources. Reality: PrivilegedMyth: Azure admins need permanent Owner or Contributor role to manage resources. Reality: Privileged

You need to prevent accidental deletion of a production resource group. Which lock? A) ReadOnly at RYou need to prevent accidental deletion of a production resource group. Which lock? A) ReadOnly at R

SOC reports, PCI reports — where do you find them on AWS? #ShortsSOC reports, PCI reports — where do you find them on AWS? #Shorts

AZ-900 question: in the shared responsibility model, what stays the customer's job no matter which sAZ-900 question: in the shared responsibility model, what stays the customer's job no matter which s

Яндекс.Метрика
© 2008-2026 «Информационно-развлекательный портал города Верхняя Салда»
salda.ws@mail.ru salda_ws Контакты Карта портала Сообщить об ошибке Соглашения Пользовательское соглашение Соглашение о конфиденциальности Согласие на обработку персональных данных Информация для правообладателей Об использовании Cookies
Все заметки Новая заметка Страницу в заметки
Страницу в закладки Мои закладки
На информационно-развлекательном портале SALDA.WS применяются cookie-файлы. Нажимая кнопку Принять, вы подтверждаете свое согласие на их использование.
О CookiesНапомнить позжеПринять