Which of the following will enable the analyst to obtain the BEST results?

CS0-002 V1

Last Post by Jacques 1 year ago

1 Posts

1 Users

0 Likes

158 Views

RSS

Jacques

(@hepnerjacques)

Noble Member

Joined: 2 years ago

Posts: 705

Topic starter 01/11/2022 6:18 am

A security analyst needs to perform a search for connections with a suspicious IP on the network traffic. The company collects full packet captures at the Internet gateway and retains them for one week.

Which of the following will enable the analyst to obtain the BEST results?

A . tcpdump Cn Cr internet.pcap host <suspicious ip>
B . strings internet.pcap | grep <suspicious ip>
C . grep Ca <suspicious ip> internet.pcap
D . npcapd internet.pcap | grep <suspicious ip>

Show Answer Hide Answer

Suggested Answer: A

Quote

Topic Tags

CompTIA CySA+

Latest CS0-002 V1 Dumps Valid Version

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Instant Download PDF

Forum Jump:

Previous Topic

Next Topic