Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location PL
Mob_nav_barsMENU

Cisco Exam 200-201 Topic 8 Question 65 Discussion

Actual exam question for Cisco's 200-201 exam
Question #: 65
Topic #: 8
[All 200-201 Questions]

An engineer is investigating a case of the unauthorized usage of the ''Tcpdump'' tool. The analysis revealed that a malicious insider attempted to sniff traffic on a specific interface. What type of information did the malicious insider attempt to obtain?

Show Suggested Answer Hide Answer
Suggested Answer: D

by Jamal at Mar 02, 2023, 08:31 PM

Limited Time Offer

25%

Off

Get Premium 200-201 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Brandon
4 days ago
I think A is the correct answer. The insider is trying to figure out what protocols are being used on the network, likely to find vulnerabilities.
upvoted 0 times
...
Mertie
18 days ago
Definitely D. The malicious insider is trying to sniff all the data within the datagram. That's what Tcpdump is for - capturing and analyzing network traffic.
upvoted 0 times
Rozella
7 hours ago
D) all information and data within the datagram
upvoted 0 times
...
Gianna
1 days ago
A) tagged protocols being used on the network
upvoted 0 times
...
...
Raina
18 days ago
I believe the insider might have been trying to sniff traffic to gather tagged protocols being used on the network.
upvoted 0 times
...
Mariko
22 days ago
I agree with Fidelia, the unauthorized usage of Tcpdump could allow access to sensitive data.
upvoted 0 times
...
Fidelia
1 months ago
I think the malicious insider was trying to obtain all information and data within the datagram.
upvoted 0 times
...

Save Cancel
az-700  pass4success  az-104  200-301  200-201  cissp  350-401  350-201  350-501  350-601  350-801  350-901  az-720  az-305  pl-300  

Warning: Cannot modify header information - headers already sent by (output started at /pass.php:70) in /pass.php on line 77