In the event that it is not feasible to perform full packet capture, what alternative methods can be employed to gather useful data for threat hunting purposes?

Select $3$ correct answer$($s$)$

Question $18$ options:

One option for collecting useful data for threat hunting when full packet capture $($PCAP$)$ is not possible is to review log files from various devices and systems, such as firewalls, security logs$,$ router logs$,$ and syslog information. This can help to provide insight into network activity and potential security threats.

Session data collection can provide useful information for threat hunting, as it is a flexible data collection method.

Examine alerts produced by various devices.

Update patches

Collect packet string data