A CHFI is analyzing suspicious activity on a company's AWS account. She suspects an unauthorized user accessed and deleted a crucial bucket object. To trace the potential perpetrator, she should primarily rely on the following: A. S3 Server Access logs to understand actions performed on a bucket object B. AWS CloudTrail logs to determine when and where the specific API calls were made C. Amazon CloudWatch logs to monitor system and application log data in real time D. Amazon VPC Flow Logs to scrutinize the IP traffic entering and leaving the specific VPC Â Suggested Answer: B Community Answer: B This question is in 312-49V10 EC-Council Computer Hacking Forensic Investigator (CHFI) v10 Exam For getting EC-Council Computer Hacking Forensic Investigator (CHFI) Certificate Disclaimers: The website is not related to, affiliated with, endorsed or authorized by EC-Council. Trademarks, certification & product names are used for reference only and belong to EC-Council. The website does not contain actual questions and answers from EC-Council's Certification Exams.
Please login or Register to submit your answer