exam questions

Exam CFR-310 All Questions

View all questions & answers for the CFR-310 exam

Exam CFR-310 topic 1 question 13 discussion

Actual exam question from CertNexus's CFR-310
Question #: 13
Topic #: 1
[All CFR-310 Questions]

A security analyst is required to collect detailed network traffic on a virtual machine. Which of the following tools could the analyst use?

  • A. nbtstat
  • B. WinDump
  • C. fport
  • D. netstat
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
044f354
3 months ago
Selected Answer: B
B. WinDump Explanation: WinDump is the Windows version of tcpdump, a network packet analyzer that captures detailed network traffic. It allows the security analyst to gather network packets for further analysis, making it ideal for detailed traffic collection on a virtual machine. Why the other answers are incorrect: A. nbtstat: Displays NetBIOS over TCP/IP information but does not capture or analyze detailed network traffic. C. fport: Shows open ports and the associated processes but doesn't collect detailed network traffic. D. netstat: Displays active connections and network statistics but doesn't capture packets for detailed traffic analysis.
upvoted 1 times
...
surfuganda
8 months, 1 week ago
Selected Answer: B
nbtstat: is used for troubleshooting NetBIOS name resolution issues and does not capture detailed network traffic. WinDump: is a Windows version of the popular tcpdump tool, which is used for capturing and analyzing network packets. WinDump can capture packets on Windows systems and provides detailed information about network traffic, making it suitable for collecting detailed network traffic on a virtual machine. fport: is used for identifying which processes are listening on or using network ports and does not capture detailed network traffic. netstat: provides information about network connections, but it does not capture detailed network traffic.
upvoted 1 times
...
Wutan
1 year, 3 months ago
Selected Answer: B
The answer is B, WinDump. WinDump is a packet capture tool for Windows. It can be used to capture network traffic on a virtual machine or on a physical machine. WinDump can capture all network traffic, or it can be used to capture specific types of traffic, such as TCP traffic or UDP traffic.
upvoted 1 times
...
HeyacedoGomez
1 year, 5 months ago
https://www.winpcap.org/windump/
upvoted 1 times
...
r04dB10ck
1 year, 9 months ago
Selected Answer: B
windows version of tcpdump
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago