Question 22 of 160 from exam CS0-002: CompTIA CySA+

Prev Question Next Question

Question

A security analyst is reviewing the logs from an internal chat server.

The chat.log file is too large to review manually, so the analyst wants to create a shorter log file that only includes lines associated with a user demonstrating anomalous activity.

Below is a snippet of the log:

Line

36570
36571
36572
36573
36574
36575

Esee
DEV12
JAVASHARK
DEV12
CHATTER14
PYTHONFUN
DEV99

~151219
~151255
151325
151327,
+151330
151358

Command

KICK DEV27

JOIN #CHATOPS e32kk10
PART #CHATOPS

JOIN';CAT ../etc/config'
PRIVMSG DEV99 "2"
PRIVMSG PYTHONFUN "OK"

Result
OK
OK
OK
OK
OK
OK

Which of the following commands would work BEST to achieve the desired result?

Answers

A. grep -v chatter14 chat.log

B. grep -i pythonfun chat.log

C. grep -i javashark chat.log

D. grep -v javashark chat.log

E. grep -v pythonfun chat.log

F. grep -i chatter14 chat.log.

Show Answer

Explanations

Click on the arrows to vote for the correct answer

A. B. C. D. E. F.

Prev Question Next Question