Why This Cheat Sheet Matters for CYSA
This cheat sheet covers the most important Security Operations concepts tested on the CYSA (CySA+) certification exam. It contains 1 sections with 6 key points. Use this as a quick-reference guide during your final review sessions.
1Sections
6Key Points
Key Tools
- SIEM: Splunk, Elastic/ELK, QRadar — log aggregation and correlation.
- SOAR: Phantom, Demisto — incident automation and playbooks.
- Vulnerability scanners: Nessus, Qualys, OpenVAS.
- Network analysis: Wireshark, tcpdump, Zeek.
- Threat intel: MISP, STIX/TAXII formats, VirusTotal.
- EDR: CrowdStrike, Carbon Black, SentinelOne — endpoint detection and response.
Practice Security Operations Questions
Put your knowledge to the test with practice questions.
CompTIA Acronym Quick Reference
CompTIA exams are packed with acronyms — memorising key acronyms and their meanings is critical. Each exam has an official list of acronyms in the exam objectives document. Focus on acronyms that appear across multiple domains, as these represent the most frequently tested concepts. Our flashcard decks are designed to drill these acronyms efficiently.