ExamTopics Logo
Mail Us[email protected]
Menu
Cisco Discussions
exam questions

Exam 200-201 All Questions

View all questions & answers for the 200-201 exam
Go to Exam

Exam 200-201 topic 1 question 105 discussion

Actual exam question from Cisco's 200-201
Question #: 105
Topic #: 1
[All 200-201 Questions]


An analyst is investigating a host in the network that appears to be communicating to a command and control server on the Internet. After collecting this packet capture, the analyst cannot determine the technique and payload used for the communication.
Which obfuscation technique is the attacker using?

  • A. Base64 encoding
  • B. transport layer security encryption
  • C. SHA-256 hashing
  • D. ROT13 encryption
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by tor_nana at Jan. 4, 2022, 7:58 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
mariodesa
Highly Voted 1 year, 6 months ago
Selected Answer: B
B is the correct answer. ROT13 is considered weak encryption and is not used with TLS (HTTPS:443). Source: https://en.wikipedia.org/wiki/ROT13
upvoted 7 times
...
Eng_ahmedyoussef
Most Recent 10 months ago
Selected Answer: B
B. is the correct answer TLS encryption == HTTPS protocol with port number : 443
upvoted 1 times
...
cy_analyst
10 months ago
Selected Answer: B
B for obvious.
upvoted 1 times
...
Mevijil
1 year, 5 months ago
Selected Answer: B
Clearly says TLS right in the output
upvoted 4 times
...
seriously5000
1 year, 6 months ago
Selected Answer: B
TLS is visible in the dump
upvoted 4 times
...
tor_nana
1 year, 7 months ago
Selected Answer: D
Halarput D is correct
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel