You're reading from Cisco Certified CyberOps Associate 200-201 Certification Guide Learn blue teaming strategies and incident response techniques to mitigate cybersecurity incidents

Product type Paperback

Published in Jun 2021

Publisher Packt

ISBN-13 9781800560871

Length 660 pages

Edition 1st Edition

Tools

Cisco

Concepts

Cybersecurity

Author (1):

Glen D. Singh

View More author details

Table of Contents (25) Chapters

Preface

1. Section 1: Network and Security Concepts

2. Chapter 1: Exploring Networking Concepts FREE CHAPTER

3. Chapter 2: Exploring Network Components and Security Systems

4. Chapter 3: Discovering Security Concepts

5. Section 2: Principles of Security Monitoring

6. Chapter 4: Understanding Security Principles

7. Chapter 5: Identifying Attack Methods

8. Chapter 6: Working with Cryptography and PKI

9. Section 3: Host and Network-Based Analysis

10. Chapter 7: Delving into Endpoint Threat Analysis

11. Chapter 8: Interpreting Endpoint Security

12. Chapter 9: Exploring Computer Forensics

13. Chapter 10: Performing Intrusion Analysis

14. Section 4: Security Policies and Procedures

15. Chapter 11: Security Management Techniques

16. Chapter 12: Dealing with Incident Response

17. Chapter 13: Implementing Incident Handling

18. Chapter 14: Implementing Cisco Security Solutions

19. Chapter 15: Working with Cisco Security Solutions

20. Chapter 16: Real-World Implementation and Best Practices

21. Chapter 17: Mock Exam 1

22. Chapter 18: Mock Exam 2

23. Assessment

24. Other Books You May Enjoy

Working with malware analysis tools

As a cybersecurity professional, you may be required to perform analysis on suspicious files, Uniform Resource Locators (URLs), or even by using the hash values. Many times, a user may scan a file using an anti-malware application and the results will show that the file is benign and not harmful. However, keep in mind that sometimes an anti-malware protection application may not always detect a malicious file or URL to be harmful, and this can be huge concern. Therefore, it's really important to get a second opinion from another malware analysis scanning tool.

Important note

The Cisco Threat Grid is a product from Cisco that is an on-premises malware analysis sandbox.

To gain a better understanding of malware analysis tools, let's take a look at Cisco's Firepower Management Center (FMC). Cisco FMC is integrated in many of Cisco's security appliances and solutions, and this allows a security engineer to gain an overview...