1. Home
  2. Discussions
  3. ECCouncil
  4. ECIH
  5. 212-89 Discussions
  6. 212-89 Exam Topic 2 Question 17 Discussion

ECCouncil EC Council Certified Incident Handler (ECIH v3) 212-89 Question # 17 Topic 2 Discussion

 ECCouncil Discussions      Browse All Questions      Go to Exam Detail      Get Premium Access
 Previous
Next  

ECCouncil EC Council Certified Incident Handler (ECIH v3) 212-89 Question # 17 Topic 2 Discussion

212-89 Exam Topic 2 Question 17 Discussion:
Question #: 17
Topic #: 2

Darwin is an attacker residing within the organization and is performing network

sniffing by running his system in promiscuous mode. He is capturing and viewing all

the network packets transmitted within the organization. Edwin is an incident handler

in the same organization.

In the above situation, which of the following Nmap commands Edwin must use to

detect Darwin’s system that is running in promiscuous mode?
A.

nmap -sV -T4 -O -F –version-light

B.

nmap –sU –p 500

C.

nmap --script=sniffer-detect [Target IP Address/Range of IP addresses]

D.

nmap --script hostmap

Get Premium 212-89 Questions
Actual exam question for ECCouncil 212-89 exam by Arlo53171 at Aug 3, 2025, 12:00:00 AM

Contribute your Thoughts:


Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.

Submit
 Previous
Next