📢 Too many exams? Don’t know which one suits you best? Book Your Free Expert 👉 call Now!


    Question

    Which of the following network traffic tool can capture

    not only passwords, but any type of data passing through a network, like usernames, email addresses, personal information, pictures, videos, or anything else?
    A TCP Dump Correct Answer Incorrect Answer
    B SMON Correct Answer Incorrect Answer
    C Firewall Correct Answer Incorrect Answer
    D Wireshark Correct Answer Incorrect Answer

    Solution

    Why this is correct: Wireshark is a full-featured packet capture and analysis tool that can capture all traffic on a network interface (subject to permissions and ARP/monitor mode) and display packet contents — including application-level payloads that may contain usernames, passwords, files, images, etc. TCPdump (option 1) can also capture raw packets but Wireshark is known for full decoding and GUI analysis; the question asks which tool can capture any type of data and Wireshark is the typical answer. Why the others are wrong/less precise: 1.      tcpdump can capture packets (it can capture raw data) but the GUI/decoding and common answer for "captures and displays everything including decoded payloads" is Wireshark. Still, tcpdump is also powerful but question likely expects Wireshark. 2.      SMON is not a standard general-purpose packet capture tool. 3.      Firewall filters/blocks and may log metadata, but it is not primarily used to capture full packet payloads for forensic analysis.

    Practice Next

    Relevant for Exams:

    ask-question