Logical Operations Exam CFR-210 Topic 2 Question 62 Discussion

Actual exam question for Logical Operations's CFR-210 exam

Question #: 62
Topic #: 2

A DMZ web server has been compromised. During the log review, the incident responder wants to parse all common internal Class A addresses from the log. Which of the following commands should the responder use to accomplish this?

Agrep --x''(10.[0-9]+.[0-9]+.[0-9]+)'' etc/rc.d/apache2/access.log | output.txt

Bgrep --x''(192.168.[0.9]+[0-9])'' bin/apache2/access.log | output.txt

Cgrep --v''(10.[0-9]+.[0-9]+.[0-9]+)'' /var/log/apache2/access.log > output.txt

Dgrep --v''(192.168.[0.9]+[0-9]+)'' /var/log/apache2/access.log > output.txt

Show Suggested Answer

Suggested Answer: C

by Joana at May 02, 2024, 10:27 AM

Limited Time Offer

25%

Off

Get Premium CFR-210 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Dean

1 days ago

It's challenging, but it's crucial to understand the grep command for log file analysis.

upvoted 0 times

...

Benton

2 days ago

This question is a bit technical. Do you think it's easy?

upvoted 0 times

...