CYB 401: Software and Systems Security: Test 2

To replace all traditional security tools

To analyze and correlate logs for threat detection

To store passwords securely

To create network firewall rules

System logs

Authentication logs

Print logs

Application logs

Identifying performance issues

Detecting security incidents

Monitoring software licenses

Generating marketing reports

Increased storage costs

Simplified correlation and analysis

Decreased system performance

Manual event correlation

Firewall logs

System logs

Security logs

Database logs

Lack of logs

High initial costs and complexity

Limited storage capacity

Low CPU usage

Analysis

Data acquisition

Reporting

Identification

Hard drive data

RAM contents

USB device files

Archived emails

Network forensics

File system forensics

Cloud forensics

Database forensics

To prevent malware infection

To avoid accidental data modification

To enhance processing speed

To delete sensitive data