Given a threat hunting script that filters logs with if event_type == 'login' and failed_attempts > 3, what will be the output if the log has event_type 'login' and failed_attempts 5?

medium📝 Analysis Q4 of 15

Cybersecurity - Advanced Threat Protection

Given a threat hunting script that filters logs with if event_type == 'login' and failed_attempts > 3, what will be the output if the log has event_type 'login' and failed_attempts 5?

AThe log entry will be ignored

BThe log entry will be flagged for investigation

CThe script will produce an error

DThe log entry will be deleted

Step-by-Step Solution

Solution:

Step 1: Evaluate the condition with given values
Event type is 'login' and failed_attempts is 5, which is greater than 3, so condition is true.
Step 2: Determine script behavior on true condition
When condition is true, the log is flagged for investigation.
Final Answer:
The log entry will be flagged for investigation -> Option B
Quick Check:
Condition true means flag log [OK]

Quick Trick: If conditions match, flag the log entry [OK]

Common Mistakes:

MISTAKES

Assuming failed_attempts must be exactly 3
Thinking script errors on numeric comparison
Confusing flagging with deleting logs

Master "Advanced Threat Protection" in Cybersecurity

9 interactive learning modes - each teaches the same concept differently

Learn Why Deep Visual Try Challenge Project Recall Time

Want More Practice?

15+ quiz questions · All difficulty levels · Free

Free Signup - Practice All Questions

More Cybersecurity Quizzes

Given a threat hunting script that filters logs with if event_type == 'login' and failed_attempts > 3, what will be the output if the log has event_type 'login' and failed_attempts 5?

Step 1: Evaluate the condition with given values

Step 2: Determine script behavior on true condition

Final Answer:

Quick Check:

Want More Practice?