Exam4Training

Which of the following is the MOST likely cause?

A SOC analyst is reviewing malicious activity on an external, exposed web server. During the investigation, the analyst determines specific traffic is not being logged, and there is no visibility from the WAF for the web application.

Which of the following is the MOST likely cause?
A . The user agent client is not compatible with the WAF.
B . A certificate on the WAF is expired.
C . HTTP traffic is not forwarding to HTTPS to decrypt.
D . Old, vulnerable cipher suites are still being used.

Answer: C

Explanation:

This could be the cause of the lack of visibility from the WAF (Web Application Firewall) for the web

application, as the WAF may not be able to inspect or block unencrypted HTTP traffic. To solve this issue, the web server should redirect all HTTP requests to HTTPS and use SSL/TLS certificates to encrypt the traffic.

Latest CAS-004 Dumps Valid Version with 128 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Exit mobile version