Questions

Now it's time to check your knowledge. Select the best response and then check your answers, which can be found in the Assessment:

  1. A significant improvement since moving from GTK to Qt is that Wireshark provides a native interface for macOS that doesn't require the use of _____.
    1. MATE
    2. X11
    3. Transum
    4. Capinfos
  2. _____is a capture engine originally developed for Unix-like OS, and is baked into Snort, TCPDUMP, and other packet analyzers to grab packets as they come off the network interface.
    1. capinfos
    2. Mate
    3. libpcap
    4. Transum
  3. _____ is a lightweight CLI tool that is not as resource intensive.
    1. TShark
    2. mergecap
    3. dftest
    4. androiddump
  4. This program will identify and print a packet's geolocation by using an IPv4 and IPv6 addresses.
    1. dftest
    2. TShark
    3. mergecap
    4. mmdbresolve
  5. This is the newest capture engine option for Wireshark, with many benefits and features to enhance your packet capture:
    1. AirPcap
    2. NpCap
    3. WinPcap
    4. libpcap
..................Content has been hidden....................

You can't read the all page of ebook, please click here login for view all page.
Reset
3.144.36.141