Automated Malware Signature Creation Quiz

Questions and Answers

What is the level of threat hunting where there is a dedicated threat hunter and a formal hunting process?

Level 2

Level 1

Level 4

Level 3 (correct)

What is the primary method used in Level 1 threat hunting?

Statistical analysis techniques

Dashboards

Machine learning

Ad hoc hunts with little data collected (correct)

What is the distinguishing feature of Level 5 threat hunting?

Searching for text strings

Integration of threat hunting teams across SOC (correct)

Use of dashboards

Occasional hunts with moderate data collection

What is the purpose of threat hunting at Level 2?

To use basic threat feeds with IoC

What is the level of threat hunting characterized by the use of machine learning?

Level 5

What is the frequency of hunts in Level 4 threat hunting?

Frequently

What is the characteristic of Level 1 threat hunting personnel?

Existing SOC personnel

What is the primary method used in Level 3 threat hunting?

Statistical analysis techniques

What is the level of threat hunting where SOC analysts are rotated into threat hunting team?

Level 4

What is the characteristic of Level 2 threat hunting?

Hunts occur occasionally