New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

GIAC GCFA Exam - Topic 2 Question 75 Discussion

Actual exam question for GIAC's GCFA exam
Question #: 75
Topic #: 2
[All GCFA Questions]

John works as a Network Security Professional. He is assigned a project to test the security of www.we-are-secure.com. He is working on the Linux operating system and wants to install an Intrusion Detection System on the We-are-secure server so that he can receive alerts about any hacking attempts. Which of the following tools can John use to accomplish the task?

Each correct answer represents a complete solution. Choose all that apply.

Show Suggested Answer Hide Answer
Suggested Answer: B, D

by Georgiann at Nov 26, 2025, 01:53 AM

Limited Time Offer

25%

Off

Get Premium GCFA Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Christene
9 hours ago
Samhain is solid for host-based detection!
upvoted 0 times
...
Kenneth
6 days ago
I thought SARA was outdated? Not sure about that one.
upvoted 0 times
...
Twila
11 days ago
Tripwire is great for file integrity checks too!
upvoted 0 times
...
Bettye
16 days ago
John should install Skynet as the IDS - it'll definitely detect any hacking attempts. Or maybe he can just ask the server nicely not to get hacked.
upvoted 0 times
...
Meaghan
21 days ago
SARA? Isn't that a girl's name? I think I'll stick with the more technical options.
upvoted 0 times
...
Catarina
26 days ago
Tripwire is a great option too. It can really help monitor file integrity.
upvoted 0 times
...
Claudia
1 month ago
Snort is the way to go! It's a classic and reliable IDS.
upvoted 0 times
...
Veronica
1 month ago
I’m a bit confused about Tripwire; I thought it was used for monitoring changes rather than detecting intrusions directly.
upvoted 0 times
...
Karon
1 month ago
I practiced a similar question where we had to identify IDS tools, and I definitely recall Snort being a key player.
upvoted 0 times
...
Monte
2 months ago
I think SARA is more of a vulnerability assessment tool, so I’m leaning towards Snort and maybe Samhain for this question.
upvoted 0 times
...
Deonna
2 months ago
I remember studying Snort as a popular IDS tool, but I'm not sure if Tripwire fits the criteria since it's more about file integrity.
upvoted 0 times
...
Jess
2 months ago
This is a good test of our network security knowledge. I'm going to carefully review each tool's description to determine which ones meet the criteria of an IDS for the given server. Gotta make sure I select the right answer.
upvoted 0 times
...
Angelica
2 months ago
Okay, let me think this through. An Intrusion Detection System needs to be able to monitor network traffic and alert on suspicious activity. Based on that, I'd say Snort and possibly Samhain would be good choices here.
upvoted 0 times
...
Clorinda
2 months ago
Definitely Snort! It's a popular choice for IDS.
upvoted 0 times
...
Charlesetta
3 months ago
Samhain? Isn't that the name of a Celtic festival? I'm not sure that's the right tool for the job.
upvoted 0 times
...
Gussie
3 months ago
Ah, I've used Snort and Tripwire before for security monitoring. Those would be my top picks for this scenario. I'm pretty confident those are the right solutions to recommend.
upvoted 0 times
...
Shaun
3 months ago
Hmm, I'm a bit unsure about this one. I know Snort is a popular IDS, but I'm not familiar with the other tools listed. I'll need to do a quick search to refresh my memory on their capabilities.
upvoted 0 times
...
Elenore
3 months ago
This seems like a straightforward question about network security tools. I think I'll start by reviewing the key features of each option to determine which ones can function as an Intrusion Detection System.
upvoted 0 times
Aja
2 months ago
I think Snort is a solid choice for an IDS.
upvoted 0 times
...
...

Save Cancel