GCIA Network Protocols and Traffic Analysis

Question 1

Which of the following protocols is primarily used for secure web traffic?

Accepted Answer

HTTPS

Answer

HTTP

Answer

FTP

Answer

Telnet

Question 2

What does a TCP SYN scan primarily detect?

Accepted Answer

Open ports

Answer

Encrypted traffic

Answer

Suspicious IP addresses

Answer

Malware infections

Question 3

In the context of network traffic analysis, what is the purpose of a protocol analyzer (such as Wireshark)?

Accepted Answer

To capture and analyze network packets

Answer

To encrypt data

Answer

To block malicious traffic

Answer

To manage network bandwidth

Question 4

Which field in the IP header indicates the length of the packet?

Accepted Answer

Total Length

Answer

TTL

Answer

Protocol

Answer

Source IP Address

Question 5

Which of the following tools is commonly used to perform network traffic analysis and generate network flow statistics?

Accepted Answer

NetFlow

Answer

Nmap

Answer

Nessus

Answer

Snort