A possibly malicious sequence of packets that were sent to a web server has been captured by an Intrusion Detection System (IDS) and was saved to a PCAP file. As a network administrator, you need to determine whether this packets are indeed malicious. What tool are you going to use?
A. Intrusion Prevention System (IPS)
B. Vulnerability scanner
C. Protocol analyzer
D. Network sniffer
EC-Council Certified Ethical Hacker v11Free dumps for 312-50v11 in Printable PDF format.High quality PDF and software. VALID exam to help you pass. |
it is C protocol analyzer… https://books.google.de/books?id=B0zHDwAAQBAJ&pg=PA153&lpg=PA153&dq=A+possibly+malicious+sequence+of+packets+that+were+sent+to+a+web+server+has+been+captured+by+an+Intrusion+Detection+System+(IDS)+and+was+saved+to+a+PCAP+file.+As+a+network+admi&source=bl&ots=brwjcIT-ML&sig=ACfU3U05XmCY5SE2XYeBEQJHLGI_Oo7IBQ&hl=es&sa=X&ved=2ahUKEwiUh8__ub7pAhUE3qQKHbVOAxIQ6AEwAXoECAoQAQ#v=onepage&q=A%20possibly%20malicious%20sequence%20of%20packets%20that%20were%20sent%20to%20a%20web%20server%20has%20been%20captured%20by%20an%20Intrusion%20Detection%20System%20(IDS)%20and%20was%20saved%20to%20a%20PCAP%20file.%20As%20a%20network%20admi&f=false
another source says A …below is the link
https://www.skillset.com/questions/an-intrusion-detection-system-ids-has-alerted-the-network-administrator-to-a-possibly-malicious-sequ
which is the correct then A or C ??
Cannot be A because it already happened. IPS is to prevent.
I think answer is C
D…Network sniffer is also used for data packet,protocol and network analysis.
The answer is actually C. Google search it!
Finding for mary. Anyone saw him/her?
Answer is C
“you need to determine whether this packets” this means you have to analyze / study something.
A is used to prevent something, this is not the correct answer.
B. definitely not the right answer
D. Network sniffer, suffering wont tell you what is going on, you should have a full picture.
C. Protocol analyzer, is the only possible answer.
Answer should be C. Protocol analyzer like wireshark
The answer must be Protocol analyzer, as sniffer are sub of analyzers
Agree, I think the answer should be C, Protocol analyzer
i think correct answer is A…