nerdexam
EC-Council

312-50V13 · Question #421

Miley, a professional hacker, decided to attack a target organization's network. To perform the attack, she used a tool to send fake ARP messages over the target network to link her MAC address with t

The correct answer is C. BetterCAP. Miley used a tool to perform ARP spoofing to link her MAC address with the target's IP, intercepting and manipulating network communication, a capability found in the BetterCAP framework.

Submitted by mateo_ar· Mar 6, 2026Sniffing

Question

Miley, a professional hacker, decided to attack a target organization's network. To perform the attack, she used a tool to send fake ARP messages over the target network to link her MAC address with the target system's IP address. By performing this, Miley received messages directed to the victim's MAC address and further used the tool to intercept, steal, modify, and block sensitive communication to the target system. What is the tool employed by Miley to perform the above attack?

Options

  • AGobbler
  • BKDerpNSpoof
  • CBetterCAP
  • DWireshark

How the community answered

(47 responses)
  • A
    4% (2)
  • B
    2% (1)
  • C
    87% (41)
  • D
    6% (3)

Why each option

Miley used a tool to perform ARP spoofing to link her MAC address with the target's IP, intercepting and manipulating network communication, a capability found in the BetterCAP framework.

AGobbler

'Gobbler' is not a widely recognized or standard tool for ARP spoofing and MITM attacks in the cybersecurity community.

BKDerpNSpoof

'KDerpNSpoof' is not a recognized or standard tool for ARP spoofing and MITM attacks; it appears to be a fabricated name.

CBetterCAPCorrect

BetterCAP is a powerful, modular, and extensible man-in-the-middle (MITM) framework that specifically includes capabilities for ARP spoofing (sending fake ARP messages), DNS spoofing, and sniffing network traffic. These features allow attackers to intercept, modify, and block communications as described in the scenario.

DWireshark

Wireshark is a network protocol analyzer used for passive capturing and analyzing network traffic, but it does not perform active attacks like ARP spoofing to intercept traffic.

Concept tested: Network attack tools (ARP spoofing, MITM)

Source: https://www.bettercap.org/

Topics

#ARP spoofing#MITM attack#sniffing tools#BetterCAP

Community Discussion

No community discussion yet for this question.

Full 312-50V13 Practice