nerdexam
EC-Council

312-50V11 · Question #899

Richard, an attacker, aimed to hack loT devices connected to a target network. In this process. Richard recorded the frequency required to share information between connected devices. After obtaining

The correct answer is B. Replay attack. Richard captured IoT radio frequency command signals and retransmitted them to repeat device actions - a classic replay attack.

IoT and OT Hacking

Question

Richard, an attacker, aimed to hack loT devices connected to a target network. In this process. Richard recorded the frequency required to share information between connected devices. After obtaining the frequency, he captured the original data when commands were initiated by the connected devices. Once the original data were collected, he used free tools such as URH to segregate the command sequence. Subsequently, he started injecting the segregated command sequence on the same frequency into the loT network, which repeats the captured signals of the devices. What Is the type of attack performed by Richard In the above scenario?

Options

  • ASide-channel attack
  • BReplay attack
  • CCrypTanalysis attack
  • DReconnaissance attack

How the community answered

(58 responses)
  • A
    2% (1)
  • B
    91% (53)
  • C
    2% (1)
  • D
    5% (3)

Why each option

Richard captured IoT radio frequency command signals and retransmitted them to repeat device actions - a classic replay attack.

ASide-channel attack

A side-channel attack exploits information leaked from a system's physical implementation such as power consumption or timing, not the capture and retransmission of radio signals.

BReplay attackCorrect

A replay attack involves intercepting legitimate transmitted data and retransmitting it to duplicate an authorized action. Richard used URH (Universal Radio Hacker) to capture and analyze raw RF command sequences from IoT devices, then injected those same captured signals back onto the same frequency - the defining characteristic of a replay attack against wireless IoT communication.

CCrypTanalysis attack

A cryptanalysis attack focuses on breaking or weakening cryptographic algorithms and keys, not on recording and replaying wireless command sequences.

DReconnaissance attack

Reconnaissance is a passive information-gathering phase used to learn about a target, not an active attack that injects replayed signals into a network.

Concept tested: IoT wireless replay attack using RF signal capture

Source: https://owasp.org/www-community/attacks/Replay_Attack

Topics

#replay attack#IoT security#signal capture#URH tool

Community Discussion

No community discussion yet for this question.

Full 312-50V11 Practice