What are two Juniper ATP Cloud feed analysis components? (Choose two.)
What are two Juniper ATP Cloud feed analysis components? (Choose two.)
Two Juniper ATP Cloud feed analysis components are the C&C cloud feed and the infected host cloud feed. The C&C cloud feed provides information about known command and control servers associated with botnets and other malicious networks, helping to identify and block traffic to and from these entities. The infected host cloud feed provides information about hosts that are known to be compromised or infected with malware, aiding in the identification and mitigation of threats by blocking communication with these infected hosts.
B&C are correct. https://www.juniper.net/documentation/us/en/software/sky-atp/sky-atp/topics/concept/sky-atp-about.html
I Think B,C is correct
Correct is B&C
B&C Command and control (C&C) cloud feeds C&C feeds are essentially a list of servers that are known command and control for botnets. The list also includes servers that are known sources for malware downloads. Infected host cloud feeds Infected hosts indicate local devices that are potentially compromised because they appear to be part of a C&C network or other exhibit other symptoms.
B. C&C (Command and Control) Cloud Feed: This feed provides information about known command and control server IPs and domains that are associated with botnets and other malicious networks. Juniper ATP Cloud uses this feed to help identify and block traffic to and from these malicious entities. C. Infected Host Cloud Feed: This feed contains information about hosts that are known to be compromised or infected with malware. It helps in identifying and mitigating threats by blocking communication with these infected hosts.
The Juniper ATP Cloud feed analysis components are the IDP signature feed and the C&C cloud feed. The IDP signature feed provides a database of signatures from known malicious traffic, while the C&C cloud feed provides the IP addresses of known command and control servers.