312-50V11 · Question #149
When conducting a penetration test, it is crucial to use all means to get all available information about the target network. One of the ways to do that is by sniffing the network. Which of the follow
The correct answer is B. Modifying and replaying captured network traffic. Passive network sniffing is a read-only activity that captures traffic without injecting or altering packets; modifying and replaying traffic requires active interaction with the network.
Question
When conducting a penetration test, it is crucial to use all means to get all available information about the target network. One of the ways to do that is by sniffing the network. Which of the following cannot be performed by the passive network sniffing?
Options
- AIdentifying operating systems, services, protocols and devices
- BModifying and replaying captured network traffic
- CCollecting unencrypted information about usernames and passwords
- DCapturing a network traffic for further analysis
How the community answered
(27 responses)- B93% (25)
- C4% (1)
- D4% (1)
Why each option
Passive network sniffing is a read-only activity that captures traffic without injecting or altering packets; modifying and replaying traffic requires active interaction with the network.
Passive sniffing can identify operating systems, services, protocols, and devices by analyzing the headers and behavior of captured packets without sending any traffic.
Passive sniffing only observes and records packets as they traverse the network without sending any traffic of its own. Modifying captured packets and replaying them onto the network is an active technique - it requires injecting new or altered frames - which by definition cannot be accomplished through passive monitoring alone.
Capturing unencrypted credentials (such as those sent over Telnet or HTTP) is a classic passive sniffing capability that requires no active packet injection.
Capturing traffic for later offline analysis is the fundamental purpose of passive sniffing and is entirely achievable without active network interaction.
Concept tested: Passive vs. active network sniffing capabilities
Source: https://www.eccouncil.org/cybersecurity-exchange/ethical-hacking/sniffing-attack-types-and-countermeasures/
Topics
Community Discussion
No community discussion yet for this question.