ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam CS0-002 All Questions

View all questions & answers for the CS0-002 exam
Go to Exam

Exam CS0-002 topic 1 question 253 discussion

Actual exam question from CompTIA's CS0-002
Question #: 253
Topic #: 1
[All CS0-002 Questions]

An information security analyst observes anomalous behavior on the SCADA devices in a power plant. This behavior results in the industrial generators overheating and destabilizing the power supply. Which of the following would BEST identify potential indicators of compromise?

  • A. Use Burp Suite to capture packets to the SCADA device’s IP.
  • B. Use tcpdump to capture packets from the SCADA device IP.
  • C. Use Wireshark to capture packets between SCADA devices and the management system.
  • D. Use Nmap to capture packets from the management system to the SCADA devices.
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by bob12356 at Dec. 14, 2022, 2:22 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Big_Dre
1 year, 8 months ago
Selected Answer: C
is the the best option since its SCADA and Wireshark is infrastructure
upvoted 1 times
...
encxorblood
2 years, 2 months ago
Selected Answer: B
Option C, which is to use Wireshark to capture packets between SCADA devices and the management system, may not provide the best information as it may not capture the packets that are causing the generators to overheat.
upvoted 2 times
...
TKW36
2 years, 4 months ago
Selected Answer: C
This question was on my exam I just took an hour ago. I chose C as well and passed with a 779.
upvoted 3 times
soupra
1 year, 6 months ago
I always laugh when people make comments like this. How do you know you got THIS question right? And how did you even find your way back to this question?
upvoted 7 times
...
...
JoshA47
2 years, 4 months ago
Selected Answer: C
https://www.examtopics.com/discussions/comptia/view/42220-exam-cs0-002-topic-1-question-2-discussion/
upvoted 3 times
2Fish
2 years, 1 month ago
Agree. The most likely answer here is C. Thanks for the link.
upvoted 1 times
...
...
bob12356
2 years, 5 months ago
Selected Answer: C
C is correct
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago