1. Home
  2. Discussions
  3. Cisco
  4. CyberOps Professional
  5. 300-215 Discussions
  6. 300-215 Exam Topic 3 Question 29 Discussion

Cisco Conducting Forensic Analysis and Incident Response Using Cisco CyberOps Technologies (CBRFIR) 300-215 Question # 29 Topic 3 Discussion

 Cisco Discussions      Browse All Questions      Go to Exam Detail      Get Premium Access
 Previous
Next  

Cisco Conducting Forensic Analysis and Incident Response Using Cisco CyberOps Technologies (CBRFIR) 300-215 Question # 29 Topic 3 Discussion

300-215 Exam Topic 3 Question 29 Discussion:
Question #: 29
Topic #: 3

A cybersecurity analyst must identify an unknown service causing high CPU on a Windows server. What tool should be used?
A.

Volatility to analyze memory dumps for forensic investigation

B.

Process Explorer from the Sysinternals Suite to monitor and examine active processes

C.

TCPdump to capture and analyze network packets

D.

SIFT (SANS Investigative Forensic Toolkit) for comprehensive digital forensics

Get Premium 300-215 Questions
Actual exam question for Cisco 300-215 exam by Sable82430 at Aug 3, 2025, 12:00:00 AM

Contribute your Thoughts:


Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.

Submit
 Previous
Next