EC-CouncilEC-Council
312-50V13 · Question #161
312-50V13 Question #161: Real Exam Question with Answer & Explanation
The correct answer is B: ARP Poisoning. ARP poisoning is a network-level attack that manipulates Address Resolution Protocol caches to redirect traffic through an attacker, effectively enabling a Man-in-the-Middle (MiTM) scenario.
Submitted by kavita_s· Mar 6, 2026Sniffing
Question
Which type of sniffing technique is generally referred as MiTM attack?
Options
- APassword Sniffing
- BARP Poisoning
- CMac Flooding
- DDHCP Sniffing
Explanation
ARP poisoning is a network-level attack that manipulates Address Resolution Protocol caches to redirect traffic through an attacker, effectively enabling a Man-in-the-Middle (MiTM) scenario.
Common mistakes.
- A. Password sniffing is the act of capturing passwords from network traffic, which is a result or objective of a sniffing attack, rather than the underlying technique that enables a MiTM attack.
- C. MAC flooding overwhelms a switch's CAM table, causing it to broadcast all traffic to all ports (acting as a hub), which facilitates sniffing but is a distinct technique from ARP poisoning and is not itself generally referred to as a MiTM attack.
- D. DHCP sniffing involves monitoring or manipulating DHCP traffic for network reconnaissance or configuration changes, but it is not the primary mechanism used to reroute general network traffic through an attacker in a MiTM scenario.
Concept tested. ARP poisoning as MiTM attack
Topics
#MiTM attack#ARP poisoning#Network sniffing
Community Discussion
No community discussion yet for this question.