nerdexam
EC-Council

212-89 · Question #99

212-89 Question #99: Real Exam Question with Answer & Explanation

The correct answer is B. Wireshark. Wireshark is a network protocol analyzer that allows users to capture and interactively browse the traffic running on a computer network. It is a crucial tool for incident responders like Eric who are developing incident-handling plans and need to analyze network traffic and patt

Question

Eric who is an incident responder is working on developing incident-handling plans and procedures. As part of this process, he is performing analysis on the organizational network to generate a report and to develop policies based on the acquired results. Which of the following tools will help him in analyzing network and its related traffic?

Options

  • AFaceNiff
  • BWireshark
  • CBurp Suite
  • DWhois

Explanation

Wireshark is a network protocol analyzer that allows users to capture and interactively browse the traffic running on a computer network. It is a crucial tool for incident responders like Eric who are developing incident-handling plans and need to analyze network traffic and patterns. Wireshark can provide detailed information about the network, including protocols used, source and destination of packets, and potential signs of malicious activity, making it invaluable for developing informed policies and procedures.

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 212-89 Practice