CompTIA Security+ (SY0-601) — Question 821

Which of the following technical controls is BEST suited for the detection and prevention of buffer overflows on hosts?

Answer options

• A. DLP
• B. HIDS
• C. EDR
• D. NIPS

Correct answer: C

Explanation

EDR (Endpoint Detection and Response) is designed to detect and respond to various types of threats, including buffer overflows, by monitoring endpoint activities. DLP (Data Loss Prevention) focuses on preventing data breaches, HIDS (Host Intrusion Detection System) mainly detects unauthorized access, and NIPS (Network Intrusion Prevention System) protects network traffic but may not effectively address host-level vulnerabilities like buffer overflows.