ExamTopics Logo
Mail Us[email protected]
Menu
Eccouncil Discussions
exam questions

Exam 212-82 All Questions

View all questions & answers for the 212-82 exam
Go to Exam

Exam 212-82 topic 1 question 36 discussion

Actual exam question from ECCouncil's 212-82
Question #: 36
Topic #: 1
[All 212-82 Questions]

Tenda, a network specialist at an organization, was examining logged data using Windows Event Viewer to identify attempted or successful unauthorized activities. The logs analyzed by Tenda include events related to Windows security; specifically, log-on/log-off activities, resource access, and also information based on Windows system's audit policies.
Identify the type of event logs analyzed by Tenda in the above scenario.

  • A. Application event log
  • B. Setup event log
  • C. Security event log
  • D. System event log
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by Ocipala at Aug. 21, 2024, 11:09 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
044f354
1 month, 3 weeks ago
Selected Answer: C
EC-Council Official Curricula Certified Cybersecurity Technician v1 https://online.vitalsource.com/reader/books/9781635679533/ Module 18 Page 2080 Security event log: This includes events related to Windows security; specifically, log-on/log-off activities, resource access, and also information based on Windows system’s audit policies. It is analyzed by security professionals to identify attempted and/or successful unauthorized activities. For example, if the system attempts to verify account credentials when an end-user tries to log-on to a machine.
upvoted 1 times
...
Ocipala
8 months ago
C. Security event log
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago