Mile2_Security
ML0-320 · Question #238
ML0-320 Question #238: Real Exam Question with Answer & Explanation
Sign in or unlock ML0-320 to reveal the answer and full explanation for question #238. The question stem and answer options stay visible for context.
Question
You have been asked to assist an investigation team in collecting data and evidence related to an internal hacking case. The investigator in charge of the case would like to capture all keystrokes from the suspect but is afraid the employee under investigation who possesses great technical skills might have installed integrity tools on his system that would detect any new software installed. What solution would be best to use to reach the investigator requirement?
Options
- ADisable the integrity tools in place
- BInstall a software key logger that does not show in the process list
- CInstall a hardware based key logger
- DSniff all traffic and keystrokes from the network
Unlock ML0-320 to see the answer
You've previewed enough free ML0-320 questions. Unlock ML0-320 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.