nerdexam
EC-Council

312-50V13 · Question #102

Eric has discovered a fantastic package of tools named Dsniff on the Internet. He has learnt to use these tools in his lab and is now ready for real world exploitation. He was able to effectively inte

The correct answer is B. Man-in-the-middle. Eric is performing a man-in-the-middle (MITM) attack by intercepting communications, establishing credentials with both ends, and relaying information transparently.

Submitted by takeshi77· Mar 6, 2026Sniffing

Question

Eric has discovered a fantastic package of tools named Dsniff on the Internet. He has learnt to use these tools in his lab and is now ready for real world exploitation. He was able to effectively intercept communications between the two entities and establish credentials with both sides of the connections. The two remote ends of the communication never notice that Eric is relaying the information between the two. What would you call this attack?

Options

  • AInterceptor
  • BMan-in-the-middle
  • CARP Proxy
  • DPoisoning Attack

How the community answered

(38 responses)
  • A
    3% (1)
  • B
    92% (35)
  • D
    5% (2)

Why each option

Eric is performing a man-in-the-middle (MITM) attack by intercepting communications, establishing credentials with both ends, and relaying information transparently.

AInterceptor

'Interceptor' is a generic term that describes the action, but 'Man-in-the-middle' is the specific and recognized name for this type of attack.

BMan-in-the-middleCorrect

This scenario precisely describes a man-in-the-middle (MITM) attack, where an attacker secretly intercepts and relays messages between two parties who believe they are communicating directly with each other. The ability to 'intercept communications,' 'establish credentials with both sides,' and have 'the two remote ends never notice that Eric is relaying the information' are all hallmarks of a MITM attack.

CARP Proxy

An ARP Proxy (or ARP Spoofing) is a common *method* to achieve a man-in-the-middle position on a local network, but it is not the name of the overarching attack described.

DPoisoning Attack

'Poisoning Attack' is too broad; while ARP poisoning or DNS poisoning can be used to facilitate a MITM, the entire described activity is a MITM attack itself, not just poisoning.

Concept tested: Man-in-the-middle attack definition

Source: https://learn.microsoft.com/en-us/microsoft-365/security/defender-endpoint/glossary#man-in-the-middle-attack-mitm

Topics

#Man-in-the-Middle#Dsniff#traffic interception

Community Discussion

No community discussion yet for this question.

Full 312-50V13 Practice