CompTIA Network+ (N10-008) — Question 601

Which of the following can be used to aggregate logs from different devices and would make analysis less difficult?

Answer options

• A. Syslog
• B. SIEM
• C. Event logs
• D. NetFlow

Correct answer: B

Explanation

The correct answer is B, SIEM, as it is specifically designed to aggregate and analyze logs from multiple sources, making it easier to identify security incidents. Options A, C, and D are not comprehensive solutions for aggregating and analyzing logs from diverse devices, as Syslog is a protocol, Event logs are individual logs, and NetFlow focuses on network traffic monitoring.