Question 153 of 730 from exam SY0-601: CompTIA Security+

Question 153 of 730 from exam SY0-601: CompTIA Security+

Prev Question Next Question

Question

A security analyst has received the following alert snippet from the HIDS appliance:

PROTOCOL TCP TCP TCP TCP sIc XMAS XMAS XMAS XMAS SCAN SCAN SCAN SCAN SRC. 192. 192. 192. 192. PORT 168.1. 168.1.1: 168.1.1 168.1. 1091 649 2264 3464 DST.PORT 192.168.1.2:8891 192.168.1.2:9001 192.168.1.2:6455 192.168.1.2:8744

Given the above logs, which of the following is the cause of the attack?

Answers

Explanations

Click on the arrows to vote for the correct answer

A. B. C. D.

B.

Prev Question Next Question