CertNexus Certified Cyber Secure Coder (CSC) — Question 5

A security analyst is required to collect detailed network traffic on a virtual machine. Which of the following tools could the analyst use?

Answer options

• A. nbtstat
• B. WinDump
• C. fport
• D. netstat

Correct answer: B

Explanation

WinDump is a packet capture tool that allows for detailed analysis of network traffic, making it suitable for the task. In contrast, nbtstat primarily provides NetBIOS statistics, fport is used for displaying open ports and their associated processes, and netstat is useful for network connections but does not capture packets like WinDump.