CompTIA CySA+ (CS0-002) — Question 77

A company recently experienced similar network attacks. To determine whether the attacks were identical, the company should gather a list of IPs domains, and files and use:

Answer options

• A. behavior data
• B. the Diamond Model of Intrusion Analysis.
• C. the attack kill chain.
• D. the reputational data.

Correct answer: B

Explanation

The Diamond Model of Intrusion Analysis provides a structured approach to understanding and analyzing cyber threats, making it suitable for comparing attack patterns. The other options, while useful in different contexts, do not specifically focus on the analytical comparison of attacks like the Diamond Model does.