SECFND 13: Security Data Collection Flashcards by Harry H

Transaction Data

Operations that occur during network sessions

How well did you know this?

Not at all

Perfectly

Epoch time

of seconds since 1/1/70

How well did you know this?

Not at all

Perfectly

TCP_Hit (Proxy)

Cached in proxy

How well did you know this?

Not at all

Perfectly

HTTP 200 Series

Successful

How well did you know this?

Not at all

Perfectly

HTTP 300 Series

Redirected

How well did you know this?

Not at all

Perfectly

HTTP 400 Series

Client side errors (403 forbidden, 401 Unauthorized)

How well did you know this?

Not at all

Perfectly

HTTP 400 Series

Server side errors

How well did you know this?

Not at all

Perfectly

HTTP Get

Retrieval and simple searches

How well did you know this?

Not at all

Perfectly

HTTP Post

Submit Data-query

How well did you know this?

Not at all

Perfectly

HTTP Put

Upload files

How well did you know this?

Not at all

Perfectly

HTTP Head

Retrieve Metadata

How well did you know this?

Not at all

Perfectly

HTTP Delete

Remove resource

How well did you know this?

Not at all

Perfectly

HTTP Trace

Application layer trace of route

How well did you know this?

Not at all

Perfectly

HTTP Option

Request available methods

How well did you know this?

Not at all

Perfectly

HTTP Connect

Tunnel SSL Connection

How well did you know this?

Not at all

Perfectly

HTTP Propfind

Retrieve properties of an object

IPFIX

Latest version of netflow

A flow

unidirectional series of packets between a source and a destination. 5 tuple is constant in a flow

Flow stitching

Combines unidirectional flow records into once record

NAT Stitching

Combine internal and external NAT info into one record

Netflow provides…

An audit trail

Brainscape's Knowledge GenomeTM

SECFND 13: Security Data Collection Flashcards

Brainscape's Knowledge Genome^TM