NSE 5 – FortiSandbox — Question 2

Which threats can a FortiSandbox inspect when it is deployed in sniffer mode? (Choose three.)

Answer options

• A. Applications that use excessive bandwidth
• B. Suspicious website access
• C. Spam
• D. Botnet connections
• E. Known viruses

Correct answer: B, D, E

Explanation

The FortiSandbox in sniffer mode is designed to inspect traffic for advanced threats, making options B, D, and E correct as they relate to malicious web activity, bot networks, and known malware. Options A and C do not pertain to the types of threats the FortiSandbox focuses on, as they involve bandwidth usage and unsolicited emails rather than direct threats to network security.