Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location PL
Mob_nav_barsMENU

Logical Operations Exam CFR-210 Topic 6 Question 54 Discussion

Actual exam question for Logical Operations's CFR-210 exam
Question #: 54
Topic #: 6
[All CFR-210 Questions]

An attack was performed on a company's web server, disabling the company's website. The incident response team's investigation produced the following:

1. Presence of malicious code installed on employees' workstations.

2. Excessive UDP datagrams sent to a single address.

3. Web server received excessive UDP datagrams from multiple internal hosts.

4. Network experienced high traffic after 3:00 pm.

5. Employee workstations sent large traffic bursts when employees accessed the internal timecard application.

Which of the following BEST describes the attack tool used to perform the attack?

Show Suggested Answer Hide Answer
Suggested Answer: C

by Janey at Dec 08, 2023, 11:00 AM

Limited Time Offer

25%

Off

Get Premium CFR-210 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Monroe
10 days ago
Hmm, this sounds like a classic case of a logic bomb. The employees' timecard application being targeted and the traffic bursts seem to indicate a timed payload triggered by user activity.
upvoted 0 times
...
Geraldine
12 days ago
I think the attack tool used here is Metasploit. The presence of malicious code on employee workstations and the high traffic patterns suggest the use of a sophisticated toolkit like Metasploit.
upvoted 0 times
...
Hubert
12 days ago
I'm not sure, but I think Nessus could also be a possibility based on the excessive UDP datagrams sent.
upvoted 0 times
...
Ellen
16 days ago
Based on the information provided, it seems like a Distributed Denial of Service (DDoS) attack using a botnet. The excessive UDP datagrams and high traffic after 3:00 pm point to a DDoS attempt.
upvoted 0 times
...
Vilma
22 days ago
I agree with Regenia, Metasploit seems like the most likely tool used.
upvoted 0 times
...
Regenia
23 days ago
I think the attack tool used was Metasploit.
upvoted 0 times
...

Save Cancel
az-700  pass4success  az-104  200-301  200-201  cissp  350-401  350-201  350-501  350-601  350-801  350-901  az-720  az-305  pl-300  

Warning: Cannot modify header information - headers already sent by (output started at /pass.php:70) in /pass.php on line 77