Which of the following tools is used to analyze the files produced by several packet-capture programs such as tcpdump, WinDump, Wireshark, and EtherPeek?
tcptrace is a command-line tool used to analyze the output of packet-capture tools such as tcpdump and Wireshark. It processes the captured data and generates detailed reports on TCP connections including connection durations, round-trip times, throughput, and more.
???? Reference – CEH v13 Study Guide, Module 10: Sniffing
“tcptrace reads in packet trace files and outputs information about each TCP connection seen.”
❌ Incorrect options:
B. Nessus is a vulnerability scanner.
C. OpenVAS is also a vulnerability assessment tool.
D. tcptraceroute is used to trace the path of packets at the TCP level, not for analyzing captured data.
Contribute your Thoughts:
Chosen Answer:
This is a voting comment (?). You can switch to a simple comment. It is better to Upvote an existing comment if you don't have anything to add.
Submit