nerdexam
EC-Council

312-50V10 · Question #647

Susan has attached to her company's network. She has managed to synchronize her boss's sessions with that of the file server. She then intercepted his traffic destined for the server, changed it the w

The correct answer is C. A man in the middle attack. Susan intercepts, modifies, and relays her boss's live session traffic to the file server without either party detecting her presence, which is the textbook definition of a man-in-the-middle attack.

Session Hijacking

Question

Susan has attached to her company's network. She has managed to synchronize her boss's sessions with that of the file server. She then intercepted his traffic destined for the server, changed it the way she wanted to and then placed it on the server in his home directory. What kind of attack is Susan carrying on?

Options

  • AA sniffing attack
  • BA spoofing attack
  • CA man in the middle attack
  • DA denial of service attack

How the community answered

(30 responses)
  • A
    3% (1)
  • B
    7% (2)
  • C
    87% (26)
  • D
    3% (1)

Why each option

Susan intercepts, modifies, and relays her boss's live session traffic to the file server without either party detecting her presence, which is the textbook definition of a man-in-the-middle attack.

AA sniffing attack

A sniffing attack involves passively capturing network traffic without modification or active relay, whereas Susan actively altered and forwarded the data.

BA spoofing attack

Spoofing involves impersonating an identity such as an IP or MAC address to deceive one party, not simultaneously intercepting and modifying a live authenticated session between two endpoints.

CA man in the middle attackCorrect

A man-in-the-middle attack occurs when an attacker secretly positions herself between two communicating parties, intercepting and optionally altering traffic while both sides believe they are communicating directly. Susan synchronized sessions, modified the intercepted data, and forwarded it to the server, satisfying all three defining characteristics - interception, alteration, and transparent relay.

DA denial of service attack

A denial of service attack aims to disrupt the availability of a service or resource, not to intercept and manipulate communications between two parties.

Concept tested: Man-in-the-middle attack session interception and modification

Source: https://csrc.nist.gov/glossary/term/man_in_the_middle_attack

Topics

#man-in-the-middle#session interception#traffic manipulation#session hijacking

Community Discussion

No community discussion yet for this question.

Full 312-50V10 Practice