CertNexus Certified Cyber Secure Coder (CSC) — Question 24
A security analyst has discovered that an application has failed to run. Which of the following is the tool MOST likely used by the analyst for the initial discovery?
Answer options
- A. syslog
- B. MSConfig
- C. Event Viewer
- D. Process Monitor
Correct answer: C
Explanation
The correct answer, Event Viewer, is used to view logs and events in Windows, making it ideal for identifying application failures. Syslog is primarily used in Unix/Linux systems for logging, MSConfig is for system configuration, and Process Monitor captures real-time file system, registry, and process/thread activity, which is not typically the first step in investigating application startup issues.