TheCCST Cybersecurity Study Guidespecifies that bothWiresharkandtcpdumpare packet capture tools that can record network traffic to a file for later analysis.
"Wireshark provides a graphical interface for packet capture and analysis. Tcpdump is a command-line tool that captures packets for detailed offline review."
Ais correct: Wireshark is widely used for packet capture and analysis.
Bis correct: tcpdump is a CLI-based packet capture tool.
C(Nmap) is for network scanning, not packet capture.
D(netstat) displays network connections and ports but does not capture packets.
Contribute your Thoughts:
Chosen Answer:
This is a voting comment (?). You can switch to a simple comment. It is better to Upvote an existing comment if you don't have anything to add.
Submit