A.Host 10.201.3.149 is receiving almost 19 times more data than is being sent to host 152.46.6.91.

B.Traffic to 152.46.6.149 is being denied by an Advanced Network Control policy.

C.Host 10.201.3.149 is sending data to 152.46.6.91 using TCP/443.

D.Host 152.46.6.91 is being identified as a watchlist country for data transfer.

A.protocol, source IP, source port, destination IP, and destination port

B.event name, log source, time, source IP, and username

C.protocol, log source, source IP, destination IP, and host name

D.event name, log source, time, source IP, and host name

A.session duration

B.total throughput

C.running processes

D.listening ports

E.OS fingerprint

A.vulnerability scoring

B.post-incident activity

C.vulnerability management

D.risk assessment

E.detection and analysis