This article is intersting because explains how ineffective are A. B. and D againts AET. https://securitywing.com/how-to-protect-networks-against-advanced-evasion-techniques/
AETs are methods used by attackers to bypass traditional security measures such as firewalls, intrusion prevention systems (IPS), and antivirus software. So network segmentation is the best and effective way to mitigate advanced evasion techniques, which are designed to bypass traditional security measures
I agree with this. At first, I was picking A, but then C seems like the better answer since AETs make traditional prevention like IPS, antivirus, and proxy become useless.
Option C, "Applying network segmentation," would be the best option for mitigating attacks that use advanced evasion techniques out of the options given. Such attacks are typically mitigated by a combination of security measures.
Keeping IPS (Intrusion Prevention System) rules up to date: This is important for maintaining security, but it focuses on identifying known attack patterns. Advanced evasion techniques often involve modifying or disguising traffic to evade signature-based detection, which might not be fully addressed by just updating IPS rules.
Installing a proxy server, on the other hand, can actively analyze and filter traffic, which makes it better suited for detecting and countering advanced evasion techniques that aim to bypass traditional security measures. It provides an additional layer of inspection and control over the traffic, helping to identify and block potentially malicious activities regardless of their evasion tactics.
From all technologies mentioned IPS would be the best to mitigate these advanced evasion attacks . IPS these days is included also in NGFW products.
I am also thinking about Proxy as from the answers looks like is a completely new security control and would be defense in depth type of approach - I add new security controls, maybe from diffrent vendors. 70% towards A, 30% towards B
This section is not available anymore. Please use the main Exam Page.CS0-002 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
grelaman
Highly Voted 1 year, 8 months agoSecurityGuyPP
1 year, 6 months agonovolyus
Most Recent 1 year, 6 months agoAnaser
1 year, 9 months agoAliyan
1 year, 10 months agoAliyan
1 year, 10 months agokarpal
1 year, 11 months agoKateVen
2 years agoHershey2025
2 years agoCyberCEH
2 years agoShareAnswers
2 years agoExamTopic147
2 years, 1 month agoZUL01
2 years ago