openbook moodle on site

ISMS

backup is corrective control

detective (antivirus is not just dectective but corrective) better IDS

2)(sample exam) have a look at implemention group have a look at circumstances

#Threat landscap how do you learn about threat landscape? enisa report APT can not be detected by Antivirus APT are not deployed by sript kiddies APT are not discoverd within 5day after deployment APT doesnt usually target Credit cards numbers apt doesnt delete itself after a while

#Kill chain why named kill chain. if you kill one step it wont work. if all steps are successfull target is hacked

pentesting

Scope creep you agree to look into things that are not part of the agreed scope

blind style

#pentest: intelligence active scan is better than shodan dig > nslookup (redundant)

#ossim risk formula what asset leve, prio, reliability triggers an alarm?