Understanding Cisco Cybersecurity Operations Fundamentals (CBROPS) — Question 248

Which two protocols are used for DDoS amplification attacks? (Choose two.)

Answer options

• A. HTTP
• B. DNS
• C. TCP
• D. ICMPv6
• E. NTP

Correct answer: B, E

Explanation

DNS and NTP are both susceptible to amplification attacks because they can respond with a much larger payload than the request sent, allowing attackers to amplify their attack traffic. HTTP, TCP, and ICMPv6 do not inherently provide the same amplification capabilities when exploited in this manner.