312-50V12 · Question #228
312-50V12 Question #228: Real Exam Question with Answer & Explanation
The correct answer is B: bettercap. bettercap is the appropriate tool for performing session hijacking and security analysis on a WPA-PSK wireless network due to its comprehensive Man-in-the-Middle capabilities.
Question
During a red team engagement, an ethical hacker is tasked with testing the security measures of an organization's wireless network. The hacker needs to select an appropriate tool to carry out a session hijacking attack. Which of the following tools should the hacker use to effectively perform session hijacking and subsequent security analysis, given that the target wireless network has the Wi-Fi Protected Access-pre-shared key (WPA-PSK) security protocol in place?
Options
- AHetty
- Bbettercap
- CDroidSheep
- DFaceNiff
Explanation
bettercap is the appropriate tool for performing session hijacking and security analysis on a WPA-PSK wireless network due to its comprehensive Man-in-the-Middle capabilities.
Common mistakes.
- A. Hetty is primarily a HTTP toolkit for web traffic manipulation and interception, not designed for low-level wireless network attacks like session hijacking in a WPA-PSK environment.
- C. DroidSheep is an Android application specifically designed for session hijacking on unencrypted (open) Wi-Fi networks and does not provide the capabilities needed for attacking WPA-PSK protected networks.
- D. FaceNiff is an Android application for capturing social media sessions, primarily on unencrypted Wi-Fi networks, and lacks the advanced features required for attacking WPA-PSK secured wireless networks.
Concept tested. Wireless network attack tools and techniques
Reference. https://www.bettercap.org/
Topics
Community Discussion
No community discussion yet for this question.