nerdexam
EC-Council

312-50V13 · Question #528

During a red team engagement, an ethical hacker is tasked with testing the security measures of an organization's wireless network. The hacker needs to select an appropriate tool to carry out a sessio

The correct answer is D. bettercap. Explanation Bettercap is the correct choice because it is a comprehensive, cross-platform network attack and monitoring framework capable of performing session hijacking on WPA-PSK protected networks through techniques like ARP spoofing, Man-in-the-Middle (MitM) attacks, and traf

Submitted by deeparc· Mar 6, 2026Session Hijacking

Question

During a red team engagement, an ethical hacker is tasked with testing the security measures of an organization's wireless network. The hacker needs to select an appropriate tool to carry out a session hijacking attack. Which of the following tools should the hacker use to effectively perform session hijacking and subsequent security analysis, given that the target wireless network has the Wi-Fi Protected Access-preshared key (WPA-PSK) security protocol in place?

Options

  • AFaceNiff
  • BHetty
  • CDroidsheep
  • Dbettercap

How the community answered

(67 responses)
  • A
    3% (2)
  • B
    16% (11)
  • C
    9% (6)
  • D
    72% (48)

Explanation

Explanation

Bettercap is the correct choice because it is a comprehensive, cross-platform network attack and monitoring framework capable of performing session hijacking on WPA-PSK protected networks through techniques like ARP spoofing, Man-in-the-Middle (MitM) attacks, and traffic interception, making it suitable for professional red team engagements requiring both attack execution and subsequent security analysis.

Why the distractors are wrong:

  • FaceNiff (A) is an Android-based tool designed for session hijacking on Wi-Fi networks, but it is limited to older, simpler security protocols and lacks the robust capabilities needed against WPA-PSK in a professional context.
  • Hetty (B) is an HTTP toolkit primarily designed for web security research and proxy-based traffic interception - it is not designed for wireless session hijacking.
  • Droidsheep (C) is another Android tool for session hijacking over Wi-Fi, but like FaceNiff, it is limited in scope, outdated, and not effective against WPA-PSK networks in a red team scenario.

Memory Tip: Think "Better cap(ture) everything" - bettercap is the better, all-in-one professional tool for network interception, making it the go-to choice whenever a question mentions a full-featured, protocol-aware red team wireless attack.

Topics

#Session Hijacking#Wireless Network Hacking#Hacking Tools#WPA-PSK

Community Discussion

No community discussion yet for this question.

Full 312-50V13 Practice