From the course: Cisco CCNP Security SCOR v1.1 (350-701) Cert Prep
Join today to access over 25,000 courses taught by industry experts.
Dynamic file analysis
From the course: Cisco CCNP Security SCOR v1.1 (350-701) Cert Prep
Dynamic file analysis
- [Instructor] We've already mentioned the fact that the dynamic nature of Cisco AMP offers more advanced protection as opposed to static point in time analysis offered by traditional antivirus solutions. When a file becomes present on any endpoint under the control of AMP, AMP will continuously watch the file and record the behavior and activity associated to the file regardless of whether the file is deemed as good or bad. Anytime that behavior changes over time, AMP can quickly alert and remediate the threat. We can see information about this by going under the analysis tab here at the top and we can choose file analysis. From here, we're going to see a couple of categories listed. We see your files and global files. From under the your files area, we can see a history of the analyzed files. In addition to the automatic analysis features within AMP, we can also submit our own specific files that we're concerned with here for analysis. Notice that the third entry down that we see…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.
Contents
-
-
-
-
-
-
-
(Locked)
Antimalware6m 8s
-
(Locked)
Retrospective security4m 59s
-
(Locked)
Indication of compromise (IOC)7m 3s
-
(Locked)
Antivirus4m 22s
-
(Locked)
Dynamic file analysis4m 39s
-
(Locked)
Endpoint device management3m 50s
-
(Locked)
Asset inventory6m 43s
-
(Locked)
Mobile device management (MDM)7m 16s
-
(Locked)
Multifactor authentication (MFA)5m 17s
-
(Locked)
Endpoint posture assessment6m 1s
-
(Locked)
Endpoint patching5m 16s
-
(Locked)
-
-