nerdexam
EC-Council

312-50V10 · Question #859

You are a penetration tester tasked with testing the wireless network of your client Brakeme SA. You are attempting to break into the wireless network with the SSID "Brakeme-lnternal." You realize tha

The correct answer is A. Dragonblood. Dragonblood is a family of vulnerabilities specific to WPA3's Dragonfly (SAE) handshake, making it the relevant attack vector against a WPA3 network.

Hacking Wireless Networks

Question

You are a penetration tester tasked with testing the wireless network of your client Brakeme SA. You are attempting to break into the wireless network with the SSID "Brakeme-lnternal." You realize that this network uses WPA3 encryption, which of the following vulnerabilities is the promising to exploit?

Options

  • ADragonblood
  • BCross-site request forgery
  • CKey reinstallation attack
  • DAP Myconfiguration

How the community answered

(46 responses)
  • A
    87% (40)
  • B
    2% (1)
  • C
    4% (2)
  • D
    7% (3)

Why each option

Dragonblood is a family of vulnerabilities specific to WPA3's Dragonfly (SAE) handshake, making it the relevant attack vector against a WPA3 network.

ADragonbloodCorrect

Dragonblood refers to a set of side-channel and denial-of-service vulnerabilities discovered in WPA3's Simultaneous Authentication of Equals (SAE) handshake, also called the Dragonfly handshake. Because these flaws are intrinsic to the WPA3 authentication protocol itself, they represent the most promising attack surface when targeting a WPA3-protected network. Exploitation can allow an attacker to recover the Wi-Fi password through timing or cache-based side channels.

BCross-site request forgery

Cross-site request forgery is a web application attack that targets HTTP session trust and has no relevance to Wi-Fi authentication protocols.

CKey reinstallation attack

Key reinstallation attack (KRACK) targets the four-way handshake in WPA2, not WPA3; WPA3's SAE handshake was specifically designed to be resistant to KRACK-style attacks.

DAP Myconfiguration

AP Misconfiguration describes a generic administrative error on an access point rather than a specific, exploitable cryptographic vulnerability tied to WPA3.

Concept tested: WPA3 Dragonblood SAE handshake vulnerability

Source: https://papers.mathyvanhoef.com/dragonblood.pdf

Topics

#WPA3#Dragonblood#SAE vulnerability#wireless exploitation

Community Discussion

No community discussion yet for this question.

Full 312-50V10 Practice