Which of the following choices should the analyst look at first?
Due to reports of unauthorized activity that was occurring on the internal network, an analyst is performing a network discovery. The analyst runs an Nmap scan against a corporate network to evaluate which devices were operating in the environment.
Given the following output:
Which of the following choices should the analyst look at first?
A . wh4dc-748gy.lan (192.168.86.152)
B . lan (192.168.86.22)
C . imaging.lan (192.168.86.150)
D . xlaptop.lan (192.168.86.249)
E . p4wnp1_aloa.lan (192.168.86.56)
Answer: E
Explanation:
The analyst should look at p4wnp1_aloa.lan (192.168.86.56) first, as this is the most suspicious device on the network. P4wnP1 ALOA is a tool that can be used to create a malicious USB device that can perform various attacks, such as keystroke injection, network sniffing, man-in-the-middle, or backdoor creation. The presence of a device with this name on the network could indicate that an attacker has plugged in a malicious USB device to a system and gained access to the network.
Reference: https://github.com/mame82/P4wnP1_aloa
Latest CS0-003 Dumps Valid Version with 128 Q&As
Latest And Valid Q&A | Instant Download | Once Fail, Full Refund