CompTIA Security+ (SY0-701) — Question 195

Which of the following methods can be used to detect attackers who have successfully infiltrated a network? (Choose two.)

Answer options

• A. Tokenization
• B. CI/CD
• C. Honeypots
• D. Threat modeling
• E. DNS sinkhole
• F. Data obfuscation

Correct answer: C, E

Explanation

Honeypots (C) are designed to attract and trap attackers, allowing for detection and analysis of their tactics. DNS sinkholes (E) redirect malicious traffic away from legitimate servers, enabling the identification of compromised systems. The other options, while useful for various aspects of security, do not specifically focus on detecting infiltrators.