CompTIA CySA+ (CS0-003) — Question 169

A cybersecurity analyst has been assigned to the threat-hunting team to create a dynamic detection strategy based on behavioral analysis and attack patterns. Which of the following best describes what the analyst will be creating?

Answer options

• A. Bots
• B. IoCs
• C. TTPs
• D. Signatures

Correct answer: C

Explanation

The analyst is creating TTPs, which stands for Tactics, Techniques, and Procedures, representing the patterns of behavior used by attackers. Bots, IoCs (Indicators of Compromise), and Signatures are not focused on the dynamic analysis of behavioral patterns and attack methodologies, making them less appropriate in this context.