Refer to the exhibit.

An analyst received this alert from the Cisco ASA device, and numerous activity logs were produced. How should this type of evidence be categorized?

• A.indirect
• B.circumstantial
• C.corroborative
• D.best

Comment: *

Name: *

Email: *

Verification: *

What are the two characteristics of the full packet captures? (Choose two.)

• A.Identifying network loops and collision domains.
• B.Troubleshooting the cause of security and performance issues.
• C.Reassembling fragmented traffic from raw data.
• D.Detecting common hardware faults and identify faulty assets.
• E.Providing a historical record of a network transaction.

Comment: *

Name: *

Email: *

Verification: *

Which open-sourced packet capture tool uses Linux and Mac OS X operating systems?

• A.tcpdump
• B.SolarWinds
• C.NetScout
• D.netsh

Comment: *

Name: *

Email: *

Verification: *

During which phase of the forensic process is data that is related to a specific event labeled and recorded to preserve its integrity?

• A.examination
• B.investigation
• C.collection
• D.reporting

Comment: *

Name: *

Email: *

Verification: *

Refer to the exhibit.

What is the potential threat identified in this Stealthwatch dashboard?

• A.A policy violation is active for host 10.10.101.24.
• B.A host on the network is sending a DDoS attack to another inside host.
• C.There are three active data exfiltration alerts.
• D.A policy violation is active for host 10.201.3.149.

Comment: *

Name: *

Email: *

Verification: *