Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Eccouncil 212-89 Exam - Topic 4 Question 77 Discussion

Actual exam question for Eccouncil's 212-89 exam
Question #: 77
Topic #: 4
[All 212-89 Questions]

An organization's customers are experiencing either slower network communication or unavailability of services. In addition, network administrators are receiving alerts from security tools such as IDS/IPS and firewalls about a possible DoS/DDoS attack. In result, the organization requests the incident handling and response (IH&R) team further investigates the incident. The IH&R team decides to use manual techniques to detect DoS/DDoS attack.

Which of the following commands helps the IH&R team to manually detect DoS/DDoS attack?

Show Suggested Answer Hide Answer
Suggested Answer: B

Email Dossier is a tool designed to perform detailed investigations on email messages to verify their authenticity and trace their origin. It can analyze email headers and provide information about the route an email has taken, the servers it passed through, and potentially malicious links or origins. For an incident handler like Stenley, tasked with verifying the validity of emails and containing malicious email threats, Email Dossier serves as a practical tool for analyzing and validating emails received by employees. By using this tool, Stenley can identify fraudulent or suspicious emails, thereby helping to protect the organization from phishing attacks, malware distribution, and other email-based threats.


by Mitzie at Mar 09, 2025, 01:01 PM

Limited Time Offer

25%

Off

Get Premium 212-89 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Glenn
6 months ago
netstat -r is more about routing, not for DDoS detection.
upvoted 0 times
...
Jose
6 months ago
nbtstat commands are not for this, just saying.
upvoted 0 times
...
Sommer
6 months ago
Wait, can it really detect DDoS? Sounds too simple.
upvoted 0 times
...
Tawna
7 months ago
Definitely agree, netstat an shows active connections.
upvoted 0 times
...
Latia
7 months ago
I think netstat an is the right command for this.
upvoted 0 times
...
Sharmaine
7 months ago
I vaguely recall that netstat -r is for routing tables, so it probably won't help with detecting a DDoS attack either.
upvoted 0 times
...
Staci
7 months ago
I feel like nbtstat commands are more related to NetBIOS, so they might not be useful for this situation.
upvoted 0 times
...
Sabra
7 months ago
I think netstat -an shows active connections and listening ports, which could help identify unusual traffic patterns.
upvoted 0 times
...
Germaine
8 months ago
I remember we practiced using netstat commands in class, but I'm not entirely sure which one is best for detecting DDoS attacks.
upvoted 0 times
...
Joana
8 months ago
This is a tricky one. I'm not super familiar with all the network commands listed, so I'll need to think through each one and try to determine which one would be most useful for manually detecting a DoS/DDoS attack. I'll make sure to read the question and options closely.
upvoted 0 times
...
Royal
8 months ago
Okay, I think I've got this. The key is to look for a command that would provide information about network connections and traffic patterns, which could help identify signs of a DoS/DDoS attack. I'll carefully review the options and try to eliminate the ones that don't seem relevant.
upvoted 0 times
...
Mattie
8 months ago
Hmm, I'm a bit unsure about this one. The question mentions "manual techniques" to detect the attack, so I'll need to carefully consider each of the command options and how they might be used for that purpose.
upvoted 0 times
...
Maryann
8 months ago
This seems like a straightforward question about detecting a DoS/DDoS attack. I'll focus on the key details - the organization is experiencing network issues and receiving security alerts, and the IH&R team needs to use manual techniques to detect the attack.
upvoted 0 times
...
Gilma
1 year ago
I hope the IH&R team remembers to bring their magnifying glasses and deerstalker hats for this 'manual' DoS/DDoS detection. Elementary, my dear Watson!
upvoted 0 times
...
Sommer
1 year ago
I bet the person who wrote this question was just trying to trip us up with those 'nbtstat' options. C all the way!
upvoted 0 times
Azzie
11 months ago
Yeah, netstat command is commonly used for network monitoring and analysis. Good choice!
upvoted 0 times
...
Tori
12 months ago
I agree, option C seems like the most relevant command for detecting DoS/DDoS attacks.
upvoted 0 times
...
Lawana
12 months ago
C) netstat an
upvoted 0 times
...
...
Carolynn
1 year ago
Option D, 'nbtstat/S', sounds like it's made up. I'm going to have to go with C, 'netstat an', as the best choice here.
upvoted 0 times
Sunny
1 year ago
Yeah, 'nbtstat/S' does seem unfamiliar. 'netstat an' is a safer bet for detecting attacks.
upvoted 0 times
...
Dewitt
1 year ago
I'm not sure about option D, 'nbtstat/S', it does sound a bit suspicious.
upvoted 0 times
...
Cordelia
1 year ago
I agree, 'netstat an' is a commonly used command for network monitoring.
upvoted 0 times
...
Rory
1 year ago
I think option C, 'netstat an', is the best choice for detecting DoS/DDoS attacks.
upvoted 0 times
...
...
Nu
1 year ago
That makes sense, netstat an would provide more detailed information for detecting DoS/DDoS attacks.
upvoted 0 times
...
Lashon
1 year ago
I'm not sure about the answer, but I know that 'nbtstat' is used for NetBIOS over TCP/IP, which doesn't seem relevant to this scenario. I'd go with C or A.
upvoted 0 times
Daron
1 year ago
Yeah, I agree. netstat an could also be useful in this situation.
upvoted 0 times
...
Daron
1 year ago
I think netstat -r could help detect the DoS/DDoS attack.
upvoted 0 times
...
...
Glynda
1 year ago
I disagree, I believe the correct command is netstat an because it shows all connections and listening ports.
upvoted 0 times
...
Ronald
1 year ago
I think option C, 'netstat an', is the correct answer. It provides detailed information about network connections, which can help detect DoS/DDoS attacks.
upvoted 0 times
Jesusita
1 year ago
I'm not sure about 'nbtstat/S', it doesn't seem like the right command for this situation.
upvoted 0 times
...
Kris
1 year ago
I believe 'nbtstat /c' is not relevant for detecting such attacks.
upvoted 0 times
...
Julianna
1 year ago
I think 'netstat -r' could also be useful in detecting DoS/DDoS attacks.
upvoted 0 times
...
Earleen
1 year ago
I agree, 'netstat an' can provide valuable information about network connections.
upvoted 0 times
...
...
Nu
1 year ago
I think the command that helps detect DoS/DDoS attack is netstat -r.
upvoted 0 times
...

Save Cancel