Certified Ethical Hacker (CEH v11) — Question 165

Which of the following tools is used to analyze the files produced by several packet-capture programs such as tcpdump, WinDump, Wireshark, and EtherPeek?

Answer options

• A. tcptrace
• B. Nessus
• C. OpenVAS
• D. tcptraceroute

Correct answer: A

Explanation

The correct answer, tcptrace, is specifically designed for analyzing packet capture files, making it the ideal choice. Nessus and OpenVAS are vulnerability scanners, which do not analyze packet captures, while tcptraceroute is a network diagnostic tool, not for file analysis.