Register
What rule source is common for both BIOC and IOC types? a) Endpoint Logs b) Network Traffic c) Threat Intelligence d) Endpoint Agents
42.9k views
5 votes
What rule source is common for both BIOC and IOC types?

a) Endpoint Logs
b) Network Traffic
c) Threat Intelligence
d) Endpoint Agents

User Pierre De LESPINAY
by
8.0k points

1 Answer

2 votes

Final answer:

The common rule source for both BIOC and IOC types is Threat Intelligence, which provides contextual information to enhance detection and monitoring of threats.

Step-by-step explanation:

The rule source that is common for both BIOC (Behavioral Indicator of Compromise) and IOC (Indicator of Compromise) types is c) Threat Intelligence. Threat Intelligence provides valuable context around threats including the various tactics, techniques, and procedures (TTPs) as well as indicators such as IP addresses, URLs, and file hashes. By leveraging threat intelligence as a rule source, security analysts can enhance the detection of both BIOC and IOC by applying the knowledge of existing threats to monitor activities and identify suspicious behavior or known bad entities across their networks.

User Refugnic Eternium
by
7.6k points
Ask a Question
Welcome to QAmmunity.org, where you can ask questions and receive answers from other members of our community.

9.5m questions

12.2m answers

Other Questions

“What does it mean when we “rework” copyrighted material?”
The book shows how to add and subtract binary and decimal numbers. However, other numbering systems are also very popular when dealing with computers. The octal (base 8) numbering system is one of these.
Please help me ! All you do is just put it it all in your own words ! Please this is for my reported card!i don't know how to put it in my own words because my English is not that good!
describe an advance in technology that makes life more enjoyable. what discoveries contribute to this technology?
Explain why binary codes are used to represent characters, numbers and symbols :)
Link Copied!