SNCF — Securing Networks with Firepower — Question 206
A network administrator is configuring a Cisco AMP public cloud instance and wants to capture infections and polymorphic variants of a threat to help detect families of malware. Which detection engine meets this requirement?
Answer options
- A. Ethos
- B. Tetra
- C. RBAC
- D. Spero
Correct answer: A
Explanation
The correct answer is Ethos, as it is specifically designed to capture infections and polymorphic variants, which is essential for detecting malware families. Tetra, RBAC, and Spero do not have the same focus or capabilities needed for this specific requirement.