Honeypot is right
The rest of the options would not collect evidence until the real attack happens. That's what a Zero-day attack means nobody is aware of the attack including the vendor.
The MOST appropriate option to collect evidence of a zero-day attack is:
A. Honeypot
A honeypot is a decoy system or network that is designed to attract and trap potential attackers. It is intentionally vulnerable and set up to mimic valuable assets or services to lure attackers into interacting with it. By monitoring the activities within the honeypot, security professionals can gather valuable information and evidence about the zero-day attack.
A is right... but what if the other options had ML & AI capabilities??
upvoted 2 times
...
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
dev46
Highly Voted 1 year, 6 months agojackdryan
10 months, 4 weeks agoBach1968
Most Recent 9 months agoeatay10
1 year, 3 months agofranbarpro
1 year, 5 months ago