GAQM
CPEH-001 · Question #560
CPEH-001 Question #560: Real Exam Question with Answer & Explanation
Sign in or unlock CPEH-001 to reveal the answer and full explanation for question #560. The question stem and answer options stay visible for context.
Question
An Intrusion Detection System (IDS) has alerted the network administrator to a possibly malicious sequence of packets sent to a Web server in the network's external DMZ. The packet traffic was captured by the IDS and saved to a PCAP file. What type of network tool can be used to determine if these packets are genuinely malicious or simply a false positive?
Options
- AProtocol analyzer
- BIntrusion Prevention System (IPS)
- CNetwork sniffer
- DVulnerability scanner
Unlock CPEH-001 to see the answer
You've previewed enough free CPEH-001 questions. Unlock CPEH-001 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.