A security analyst is reviewing packet captures to determine the extent of success during an attacker’s reconnaissance phase following a recent incident.
The following is a hex and ASCII dump of one such packet:
Which of the following BEST describes this packet?
A. DNS BIND version request
B. DNS over UDP standard query
C. DNS over TCP server status query
D. DNS zone transfer request
CS0-002: CompTIA CySA+ ExamFULL Printable PDF and Software. VALID exam to help you PASS. |
when you see this displayed in Wireshark – all the ……… in between the letters and other words – tells you that it is an ISC BIND PATCH — the only answer for DNS BIND is listed above…
Is there anyone who could explain?
how to read this hex and ASCII dump? how can you say it is DNS bind version request? someone explain