Using Wire shark to examine the captured traffic, which command can be used as a display filter to find unencrypted file transfers?

A company’s policy requires employees to perform file transfers using protocols which encrypt traffic. You suspect some employees are still performing file transfers using unencrypted protocols because the employees do not like changes. You have positioned a network sniffer to capture traffic from the laptops used by employees in the data ingest department.

Using Wire shark to examine the captured traffic, which command can be used as a display filter to find unencrypted file transfers?
A . tcp.port != 21
B . tcp.port = 23
C . tcp.port ==21
D . tcp.port ==21 || tcp.port ==22

Answer: D

Subscribe
Notify of
guest
1 Comment
Inline Feedbacks
View all comments
Lex
Lex
3 years ago

C is correct. D includes SSH in the filter (port 22) which is encrypted