CompTIA Security+ (SY0-601) — Question 618

The primary goal of the threat-hunting team at a large company is to identify cyberthreats that the SOC has not detected. Which of the following types of data would the threat-hunting team primarily use to identify systems that are exploitable?

Answer options

• A. Vulnerability scan
• B. Packet capture
• C. Threat feed
• D. User behavior

Correct answer: C

Explanation

The correct answer is C, as threat feeds provide updated information about potential threats and vulnerabilities that can be exploited. Options A and B focus on system vulnerabilities and network traffic analysis, respectively, while D relates to user activities, which are less relevant for identifying exploitable systems.