Given the following output from a Linux machine:
file2cable -i eth0 -f file.pcap
Which of the following BEST describes what a security analyst is trying to accomplish?
A. The analyst is attempting to measure bandwidth utilization on interface eth0.
B. The analyst is attempting to capture traffic on interface eth0.
C. The analyst is attempting to replay captured data from a PCAP file.
D. The analyst is attempting to capture traffic for a PCAP file.
E. The analyst is attempting to use a protocol analyzer to monitor network traffic.
CS0-002: CompTIA CySA+ ExamFULL Printable PDF and Software. VALID exam to help you PASS. |
 |
It’s C.
We can eliminate answer E as file2cable is not a protocol analyzer. The file “file.pcap” was for sure collected using a protocol analyzer but file2cable is just a program used to send (replay) any data which we have as a binary to any interface we want.
D and B are not correct as file2cable is not used for capturing data.
A – there are other tools to measure bandwidth, throughput, and goodput and file2cable is not the one.
i think C is the correct one, because the analyst want to send the raw packet using -f
give me your opinion
I wouldn’t trust all the answers provided. I’ve found several mistakes on this site. But good questions to think about.
file2cable
This tool is perfect to find new vulnerabilities and test concepts. It sends out any binary file as Ethernet frame – AS IT IS
-v verbose (hex dump to screen)
-i interface
-f the file you want to send
It could be C…or even A. Is the BEST answer E ??