nerdexam
EC-Council

312-50V11 · Question #295

Pentest results indicate that voice over IP traffic is traversing a network. Which of the following tools will decode a packet capture and extract the voice conversations?

The correct answer is A. Cain. Cain and Abel is the tool specifically designed to sniff, decode, and reconstruct VoIP conversations from captured network traffic.

Sniffing

Question

Pentest results indicate that voice over IP traffic is traversing a network. Which of the following tools will decode a packet capture and extract the voice conversations?

Options

  • ACain
  • BJohn the Ripper
  • CNikto
  • DHping

How the community answered

(23 responses)
  • A
    91% (21)
  • B
    4% (1)
  • C
    4% (1)

Why each option

Cain and Abel is the tool specifically designed to sniff, decode, and reconstruct VoIP conversations from captured network traffic.

ACainCorrect

Cain and Abel includes a dedicated VoIP sniffer module that captures RTP audio streams associated with SIP-based calls, reassembles the audio data from the packet sequence, and allows playback of the reconstructed voice conversation - making it the appropriate tool for extracting voice content from a packet capture on a VoIP-enabled network.

BJohn the Ripper

John the Ripper is a password hash cracking tool focused on offline dictionary and brute-force attacks against credential files, with no capability to parse or decode VoIP protocols.

CNikto

Nikto is a web server vulnerability scanner that performs HTTP-based enumeration and testing and has no functionality for capturing or decoding RTP or SIP traffic.

DHping

Hping is a packet crafting and network probing utility used to construct and send custom packets for testing purposes, not to capture or decode live VoIP audio streams.

Concept tested: VoIP conversation extraction from packet captures

Topics

#VoIP interception#packet capture#Cain#voice decoding

Community Discussion

No community discussion yet for this question.

Full 312-50V11 Practice