New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

GIAC GSEC Exam - Topic 4 Question 35 Discussion

Actual exam question for GIAC's GSEC exam
Question #: 35
Topic #: 4
[All GSEC Questions]

Open the MATE terminal and use the tcpdump program to read - /pcaps /cass tech.pcap.

What is the source port number?

Show Suggested Answer Hide Answer
Suggested Answer: E

by Kattie at Nov 27, 2023, 06:44 PM

Limited Time Offer

25%

Off

Get Premium GSEC Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Marylin
3 months ago
Totally with you on 36480, seems legit!
upvoted 0 times
...
Yasuko
3 months ago
Definitely not 25, that’s for SMTP.
upvoted 0 times
...
Sherell
3 months ago
Wait, 878733706? That seems way too high for a port number.
upvoted 0 times
...
Oliva
4 months ago
I think it's 443, that’s common for HTTPS traffic.
upvoted 0 times
...
Dyan
4 months ago
The source port number is usually in the range of 1024-65535.
upvoted 0 times
...
Lai
4 months ago
I vaguely remember a question about port numbers in our last practice exam, but I can't remember the specifics.
upvoted 0 times
...
Arthur
4 months ago
I feel like 443 is a common port for HTTPS, but I don't know if that's the right answer here.
upvoted 0 times
...
Tijuana
4 months ago
I think the source port is usually listed in the first few lines of the tcpdump output, but I can't recall the exact command we used.
upvoted 0 times
...
Shaniqua
5 months ago
I remember we practiced using tcpdump, but I'm not sure how to find the source port number in the output.
upvoted 0 times
...
Lizbeth
5 months ago
This seems like a pretty standard network analysis task. I'm confident I can use tcpdump to find the source port number in the pcap file.
upvoted 0 times
...
Clare
5 months ago
Wait, do I need to specify any additional options or flags when running tcpdump? I want to make sure I'm doing this correctly.
upvoted 0 times
...
Erinn
5 months ago
Okay, I've got the MATE terminal open and I'm ready to run tcpdump. Now I just need to find the source port number in the output.
upvoted 0 times
...
Isabelle
5 months ago
This looks straightforward, I'll just open the MATE terminal, run tcpdump on the pcap file, and look for the source port number.
upvoted 0 times
...
Ngoc
5 months ago
Hmm, I'm not too familiar with tcpdump, but I think I can figure it out. Let me try to follow the instructions step-by-step.
upvoted 0 times
...
Paul
5 months ago
Hmm, I'm a bit confused about the "decisions that are made frequently" option. Wouldn't those be better suited for decentralized decision-making?
upvoted 0 times
...
Salena
5 months ago
Hmm, I'm a bit unsure about this one. The options seem similar, and I want to make sure I understand the key differences between them before selecting an answer.
upvoted 0 times
...
Gracia
5 months ago
I seem to recall that CUSUM detects shifts better, and I believe EWMA does too, but I need to double-check if they included EWQR in the mix for this question.
upvoted 0 times
...

Save Cancel