New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Eccouncil 212-89 Exam - Topic 4 Question 77 Discussion

Actual exam question for Eccouncil's 212-89 exam
Question #: 77
Topic #: 4
[All 212-89 Questions]

An organization's customers are experiencing either slower network communication or unavailability of services. In addition, network administrators are receiving alerts from security tools such as IDS/IPS and firewalls about a possible DoS/DDoS attack. In result, the organization requests the incident handling and response (IH&R) team further investigates the incident. The IH&R team decides to use manual techniques to detect DoS/DDoS attack.

Which of the following commands helps the IH&R team to manually detect DoS/DDoS attack?

Show Suggested Answer Hide Answer
Suggested Answer: B

Email Dossier is a tool designed to perform detailed investigations on email messages to verify their authenticity and trace their origin. It can analyze email headers and provide information about the route an email has taken, the servers it passed through, and potentially malicious links or origins. For an incident handler like Stenley, tasked with verifying the validity of emails and containing malicious email threats, Email Dossier serves as a practical tool for analyzing and validating emails received by employees. By using this tool, Stenley can identify fraudulent or suspicious emails, thereby helping to protect the organization from phishing attacks, malware distribution, and other email-based threats.


by Mitzie at Mar 09, 2025, 01:01 PM

Limited Time Offer

25%

Off

Get Premium 212-89 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Glenn
3 months ago
netstat -r is more about routing, not for DDoS detection.
upvoted 0 times
...
Jose
3 months ago
nbtstat commands are not for this, just saying.
upvoted 0 times
...
Sommer
3 months ago
Wait, can it really detect DDoS? Sounds too simple.
upvoted 0 times
...
Tawna
4 months ago
Definitely agree, netstat an shows active connections.
upvoted 0 times
...
Latia
4 months ago
I think netstat an is the right command for this.
upvoted 0 times
...
Sharmaine
4 months ago
I vaguely recall that netstat -r is for routing tables, so it probably won't help with detecting a DDoS attack either.
upvoted 0 times
...
Staci
4 months ago
I feel like nbtstat commands are more related to NetBIOS, so they might not be useful for this situation.
upvoted 0 times
...
Sabra
4 months ago
I think netstat -an shows active connections and listening ports, which could help identify unusual traffic patterns.
upvoted 0 times
...
Germaine
5 months ago
I remember we practiced using netstat commands in class, but I'm not entirely sure which one is best for detecting DDoS attacks.
upvoted 0 times
...
Joana
5 months ago
This is a tricky one. I'm not super familiar with all the network commands listed, so I'll need to think through each one and try to determine which one would be most useful for manually detecting a DoS/DDoS attack. I'll make sure to read the question and options closely.
upvoted 0 times
...
Royal
5 months ago
Okay, I think I've got this. The key is to look for a command that would provide information about network connections and traffic patterns, which could help identify signs of a DoS/DDoS attack. I'll carefully review the options and try to eliminate the ones that don't seem relevant.
upvoted 0 times
...
Mattie
5 months ago
Hmm, I'm a bit unsure about this one. The question mentions "manual techniques" to detect the attack, so I'll need to carefully consider each of the command options and how they might be used for that purpose.
upvoted 0 times
...
Maryann
5 months ago
This seems like a straightforward question about detecting a DoS/DDoS attack. I'll focus on the key details - the organization is experiencing network issues and receiving security alerts, and the IH&R team needs to use manual techniques to detect the attack.
upvoted 0 times
...
Gilma
10 months ago
I hope the IH&R team remembers to bring their magnifying glasses and deerstalker hats for this 'manual' DoS/DDoS detection. Elementary, my dear Watson!
upvoted 0 times
...
Sommer
10 months ago
I bet the person who wrote this question was just trying to trip us up with those 'nbtstat' options. C all the way!
upvoted 0 times
Azzie
8 months ago
Yeah, netstat command is commonly used for network monitoring and analysis. Good choice!
upvoted 0 times
...
Tori
8 months ago
I agree, option C seems like the most relevant command for detecting DoS/DDoS attacks.
upvoted 0 times
...
Lawana
9 months ago
C) netstat an
upvoted 0 times
...
...
Carolynn
10 months ago
Option D, 'nbtstat/S', sounds like it's made up. I'm going to have to go with C, 'netstat an', as the best choice here.
upvoted 0 times
Sunny
9 months ago
Yeah, 'nbtstat/S' does seem unfamiliar. 'netstat an' is a safer bet for detecting attacks.
upvoted 0 times
...
Dewitt
9 months ago
I'm not sure about option D, 'nbtstat/S', it does sound a bit suspicious.
upvoted 0 times
...
Cordelia
9 months ago
I agree, 'netstat an' is a commonly used command for network monitoring.
upvoted 0 times
...
Rory
10 months ago
I think option C, 'netstat an', is the best choice for detecting DoS/DDoS attacks.
upvoted 0 times
...
...
Nu
10 months ago
That makes sense, netstat an would provide more detailed information for detecting DoS/DDoS attacks.
upvoted 0 times
...
Lashon
10 months ago
I'm not sure about the answer, but I know that 'nbtstat' is used for NetBIOS over TCP/IP, which doesn't seem relevant to this scenario. I'd go with C or A.
upvoted 0 times
Daron
9 months ago
Yeah, I agree. netstat an could also be useful in this situation.
upvoted 0 times
...
Daron
9 months ago
I think netstat -r could help detect the DoS/DDoS attack.
upvoted 0 times
...
...
Glynda
11 months ago
I disagree, I believe the correct command is netstat an because it shows all connections and listening ports.
upvoted 0 times
...
Ronald
11 months ago
I think option C, 'netstat an', is the correct answer. It provides detailed information about network connections, which can help detect DoS/DDoS attacks.
upvoted 0 times
Jesusita
9 months ago
I'm not sure about 'nbtstat/S', it doesn't seem like the right command for this situation.
upvoted 0 times
...
Kris
9 months ago
I believe 'nbtstat /c' is not relevant for detecting such attacks.
upvoted 0 times
...
Julianna
9 months ago
I think 'netstat -r' could also be useful in detecting DoS/DDoS attacks.
upvoted 0 times
...
Earleen
10 months ago
I agree, 'netstat an' can provide valuable information about network connections.
upvoted 0 times
...
...
Nu
11 months ago
I think the command that helps detect DoS/DDoS attack is netstat -r.
upvoted 0 times
...

Save Cancel