CompTIA Study Materials
AWS Study Materials
AWS Cloud Practitioner AWS Cloud Practitioner
AWS Cloud Practitioner CLF-C02
Microsoft Study Materials
Microsoft Azure Fundamentals Microsoft Azure Fundamentals
Microsoft Azure Fundamentals AZ-900

Free CompTIA CySA+ CS0-003 Practice Question

During a routine check, a security analyst notices that several outbound connections to unfamiliar external IP addresses have been made from a server within the company's network. There is no documented business need for these communications. Which tool should the analyst use to capture and analyze the traffic between the server and these IP addresses for further investigation?

  • tcpdump

  • Wireshark

  • WHOIS

  • Simple Network Management Protocol (SNMP)

This question is for objective:
Security Operations
Your Score:
Security Operations
Vulnerability Management
Incident Response and Management
Reporting and Communication