Outsmarting Threat Actors

Question 1

What are tactics, Techniques, and Procedures (TTPs)?

Answer 1

Specific methods and patterns of activities or behaviors associated with a particular threat actor or group of threat actors

Question 2

What are Deceptive and Disruption Technologies?

Answer 2

Technologies designed to mislead, confuse, and divert attackers from critical assets while simultaneously detecting and neutralizing threats

Question 3

What are Honeypots?

Answer 3

Decoy system or network set up to attract potential hackers

Question 4

What are Honeynets?

Answer 4

Network of honeypots to create a more complex system that is designed to mimic an entire network of systems

Question 5

What are Honey files?

Answer 5

Decoy file placed within a system to lure in potential attackers

Question 6

What are Honeytokens?

Answer 6

Piece of data or are source that has no legitimate value or use, but is monitored for access or use

Question 7

What are Bogus DNS entries?

Answer 7

Fake Domain Name System entries introduced into your system’s DNS server

Question 8

What are Decoy directories?

Answer 8

Fake folders and files placed within a system’s storage

Question 9

What is a Dynamic page generation?

Answer 9

Effective against automated scraping tools or bots trying to index or steal content from your organization’s website

Question 10

What is Port triggering?

Answer 10

Security mechanism where specific services or ports on a network device remain closed until a specific outbound traffic pattern is detected

Question 11

What occurs in a Spoofing fake telemetry data?

Answer 11

When a system detects a network scan is being attempted by an attacker, it can be configured to respond by sending out fake telemetry or network data