312-50V13 · Question #102
Eric has discovered a fantastic package of tools named Dsniff on the Internet. He has learnt to use these tools in his lab and is now ready for real world exploitation. He was able to effectively inte
The correct answer is B. Man-in-the-middle. Eric is performing a man-in-the-middle (MITM) attack by intercepting communications, establishing credentials with both ends, and relaying information transparently.
Question
Options
- AInterceptor
- BMan-in-the-middle
- CARP Proxy
- DPoisoning Attack
How the community answered
(38 responses)- A3% (1)
- B92% (35)
- D5% (2)
Why each option
Eric is performing a man-in-the-middle (MITM) attack by intercepting communications, establishing credentials with both ends, and relaying information transparently.
'Interceptor' is a generic term that describes the action, but 'Man-in-the-middle' is the specific and recognized name for this type of attack.
This scenario precisely describes a man-in-the-middle (MITM) attack, where an attacker secretly intercepts and relays messages between two parties who believe they are communicating directly with each other. The ability to 'intercept communications,' 'establish credentials with both sides,' and have 'the two remote ends never notice that Eric is relaying the information' are all hallmarks of a MITM attack.
An ARP Proxy (or ARP Spoofing) is a common *method* to achieve a man-in-the-middle position on a local network, but it is not the name of the overarching attack described.
'Poisoning Attack' is too broad; while ARP poisoning or DNS poisoning can be used to facilitate a MITM, the entire described activity is a MITM attack itself, not just poisoning.
Concept tested: Man-in-the-middle attack definition
Source: https://learn.microsoft.com/en-us/microsoft-365/security/defender-endpoint/glossary#man-in-the-middle-attack-mitm
Topics
Community Discussion
No community discussion yet for this question.