Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.
Mail Us[email protected]
Menu
Certnexus Discussions
exam questions

Exam CFR-310 All Questions

View all questions & answers for the CFR-310 exam
Go to Exam

Exam CFR-310 topic 1 question 67 discussion

Actual exam question from CertNexus's CFR-310
Question #: 67
Topic #: 1
[All CFR-310 Questions]

Tcpdump is a tool that can be used to detect which of the following indicators of compromise?

  • A. Unusual network traffic
  • B. Unknown open ports
  • C. Poor network performance
  • D. Unknown use of protocols
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by 044f354 at Sept. 28, 2024, 8:01 p.m.

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Submit Cancel
044f354
1 month, 3 weeks ago
Selected Answer: A
A. Unusual network traffic. Tcpdump is a packet-sniffing tool that captures network traffic in real-time. It allows you to analyze packets on a network, which can help detect unusual network traffic that may indicate an attack or compromise, such as spikes in data flow, suspicious IP addresses, or unexpected types of network traffic. Here’s why the other options don't fit as well: B. Unknown open ports: While Tcpdump captures traffic, it’s not primarily used to scan for open ports; tools like Nmap are better suited for that. C. Poor network performance: Tcpdump doesn’t measure performance directly; it captures traffic for analysis. Performance issues would typically be detected with different monitoring tools. D. Unknown use of protocols: Tcpdump can show you the protocols in use, but detecting unknown protocols would require deeper analysis of the traffic and isn't its main focus.
upvoted 1 times
...

Get IT Certification

Unlock free, top-quality video courses on ExamTopics with a simple registration. Elevate your learning journey with our expertly curated content. Register now to access a diverse range of educational resources designed for your success. Start learning today with ExamTopics!

Start Learning for free
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel