Which of the following tools is used to analyze the files produced by several packet-capture programs such as tcpdump, WinDump, Wireshark, and EtherPeek?
As others have shown tcptrace is clearly the correct answer. However, I have been unable to find any mention of this tool in the official EC Council CEHv11 book... Would they really have a question on their test that is not mentioned in their official curriculum?
https://sourceforge.net/projects/open-tcptrace/
"tcptrace is a tool written by Shawn Ostermann at Ohio University, for analysis of TCP dump files. It can take as input the files produced by several popular packet-capture programs, including tcpdump, snoop, etherpeek, HP Net Metrix, and WinDump. tcptrace can produce several different types of output containing information on each connection seen, such as elapsed time, bytes and segments sent and recieved, retransmissions, round trip times, window advertisements, throughput, and more. It can also produce a number of graphs for further analysis."
If you google the correct answer you will find the page of the tool - tcptrace is a tool written by Shawn Ostermann at Ohio University, for analysis of TCP dump files...
In addition you can try to eliminate the other answers:
- Nessus and OpenVAs are vulnerability scanning/management tools
- tcptraceroute is tricky as it is misleading, but when you see "traceroute", you should think about the standard traceroute, which will give you the actual route path. And you end up with A
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
kiki533
6 months agoStormCloak4Ever
10 months agoSeaH0rse66
11 months, 1 week agoMr_Gray
1 year, 6 months agospydog
1 year, 6 months agoANDRESCB1988
1 year, 9 months ago