(ISC)2(ISC)2
SSCP · Question #1016
SSCP Question #1016: Real Exam Question with Answer & Explanation
The correct answer is D: It captures network traffic for later analysis.. A packet sniffer, also known as a network analyzer or protocol analyzer, is a tool that intercepts and logs network traffic for detailed inspection and analysis.
Submitted by certguy· Apr 18, 2026Network and Communications Security
Question
What is a packet sniffer?
Options
- AIt tracks network connections to off-site locations.
- BIt monitors network traffic for illegal packets.
- CIt scans network segments for cabling faults.
- DIt captures network traffic for later analysis.
Explanation
A packet sniffer, also known as a network analyzer or protocol analyzer, is a tool that intercepts and logs network traffic for detailed inspection and analysis.
Common mistakes.
- A. While a packet sniffer can show connections to off-site locations, its primary function is broader: to capture and inspect all traffic it sees, not just off-site connections.
- B. Monitoring for 'illegal packets' is a function of an Intrusion Detection/Prevention System (IDS/IPS), which analyzes traffic against rules, rather than just capturing it.
- C. Scanning network segments for cabling faults is typically done with cable testers or network diagnostic tools, not a packet sniffer.
Concept tested. Packet sniffer function
Reference. https://www.cisco.com/c/en/us/products/security/what-is-packet-sniffing.html
Topics
#Packet sniffer#Network traffic analysis#Network monitoring#Security tools
Community Discussion
No community discussion yet for this question.