Certified Ethical Hacker (CEH v10) — Question 195
Which of the following tools is used to analyze the files produced by several packet-capture programs such as tcpdump, WinDump, Wireshark, and EtherPeek?
Answer options
- A. tcptrace
- B. Nessus
- C. OpenVAS
- D. tcptraceroute
Correct answer: A
Explanation
The correct answer is tcptrace, which is specifically designed to analyze packet capture files. Nessus and OpenVAS are vulnerability scanning tools, not meant for file analysis, while tcptraceroute is a network diagnostic tool used for tracing the route packets take to a destination, rather than analyzing packet capture files.