A company’s asset management software has been discovering a weekly increase in non-standard software installed on end users’ machines with duplicate license keys. The security analyst wants to know if any of this software is listening on any non-standard ports, such as 6667. Which of the following tools should the analyst recommend to block any command and control traffic?
A. Netstat
B. NIDS
C. IPS
D. HIDS