nerdexam
Exams312-50V10Questions#692
EC-Council

312-50V10 · Question #692

312-50V10 Question #692: Real Exam Question with Answer & Explanation

The correct answer is B: ARP Poisoning. ARP Poisoning is the sniffing technique classified as a Man-in-the-Middle attack because it redirects network traffic through the attacker's machine by corrupting ARP caches.

Sniffing

Question

Which type of sniffing technique is generally referred as MiTM attack?

Exhibit

312-50V10 question #692 exhibit

Options

  • APassword Sniffing
  • BARP Poisoning
  • CMac Flooding
  • DDHCP Sniffing

Explanation

ARP Poisoning is the sniffing technique classified as a Man-in-the-Middle attack because it redirects network traffic through the attacker's machine by corrupting ARP caches.

Common mistakes.

  • A. Password sniffing is a passive capture technique that reads credentials from network traffic; it does not involve redirecting or intercepting traffic between two parties.
  • C. MAC flooding is an attack that overwhelms a switch's CAM table to cause broadcast behavior, enabling passive sniffing - it does not position the attacker between two communicating hosts.
  • D. DHCP sniffing refers to monitoring or rogue DHCP server attacks and does not describe the active traffic-redirection mechanism that defines a MiTM attack.

Concept tested. ARP poisoning as Man-in-the-Middle attack

Reference. https://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst6500/ios/12-2SX/configuration/guide/book/dynarp.html

Topics

#ARP poisoning#MiTM attack#sniffing techniques#network attacks

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 312-50V10 Practice
Which type of sniffing technique is generally referred as MiTM attack? | 312-50V10 Q#692 Answer | NerdExam