Certified Network Defender (CND) — Question 104
Which of the following is a tool that runs on the Windows OS and analyzes iptables log messages to detect port scans and other suspicious traffic?
Answer options
- A. Nmap
- B. Hping
- C. NetRanger
- D. PSAD
Correct answer: C
Explanation
The correct answer is C. NetRanger is specifically designed to analyze iptables logs on Windows systems for port scans and suspicious activities. Nmap and Hping are network scanning tools, while PSAD is primarily used for analyzing iptables logs on Linux systems, making them unsuitable for the question's requirement.