nerdexam
EC-Council

312-50V13 · Question #101

Susan has attached to her company's network. She has managed to synchronize her boss's sessions with that of the file server. She then intercepted his traffic destined for the server, changed it the w

The correct answer is C. A man in the middle attack. Susan is performing a man-in-the-middle (MITM) attack by intercepting, modifying, and relaying communication between her boss and the file server without their knowledge.

Submitted by tom_us· Mar 6, 2026Sniffing

Question

Susan has attached to her company's network. She has managed to synchronize her boss's sessions with that of the file server. She then intercepted his traffic destined for the server, changed it the way she wanted to and then placed it on the server in his home directory. What kind of attack is Susan carrying on?

Options

  • AA sniffing attack
  • BA spoofing attack
  • CA man in the middle attack
  • DA denial of service attack

How the community answered

(32 responses)
  • A
    6% (2)
  • C
    91% (29)
  • D
    3% (1)

Why each option

Susan is performing a man-in-the-middle (MITM) attack by intercepting, modifying, and relaying communication between her boss and the file server without their knowledge.

AA sniffing attack

A sniffing attack involves passively monitoring network traffic, but it does not include actively intercepting, modifying, and injecting altered data, which are key components of the described scenario.

BA spoofing attack

A spoofing attack involves impersonating another entity (e.g., IP spoofing, MAC spoofing), which might be part of establishing a MITM, but the complete described action of interception, modification, and relaying goes beyond just spoofing.

CA man in the middle attackCorrect

A man-in-the-middle (MITM) attack involves an attacker intercepting communication between two parties, relaying messages between them, and often modifying the messages in transit. The description explicitly states Susan 'intercepted his traffic,' 'changed it,' and 'placed it on the server,' perfectly matching the characteristics of a MITM attack.

DA denial of service attack

A denial of service (DoS) attack aims to make a service or resource unavailable to its legitimate users, which is not what Susan is doing; she is manipulating data, not preventing access.

Concept tested: Man-in-the-middle attack

Source: https://learn.microsoft.com/en-us/microsoft-365/security/defender-endpoint/glossary#man-in-the-middle-attack-mitm

Topics

#Man-in-the-Middle#traffic interception#session manipulation

Community Discussion

No community discussion yet for this question.

Full 312-50V13 Practice