nerdexam
Exams312-50V9Questions#40
EC-Council

312-50V9 · Question #40

312-50V9 Question #40: Real Exam Question with Answer & Explanation

The correct answer is A: The tester must capture the WPA2 authentication handshake and then crack it.. WPA2 cannot be cracked in real time, but capturing the 4-way authentication handshake allows offline dictionary or brute-force attacks against the passphrase.

Question

During a wireless penetration test, a tester detects an access point using WPA2 encryption. Which of the following attacks should be used to obtain the key?

Options

  • AThe tester must capture the WPA2 authentication handshake and then crack it.
  • BThe tester must use the tool inSSIDer to crack it using the ESSID of the network.
  • CThe tester cannot crack WPA2 because it is in full compliance with the IEEE 802.11i standard.
  • DThe tester must change the MAC address of the wireless network card and then use the AirTraf

Explanation

WPA2 cannot be cracked in real time, but capturing the 4-way authentication handshake allows offline dictionary or brute-force attacks against the passphrase.

Common mistakes.

  • B. inSSIDer is a Wi-Fi network discovery and analysis tool used for scanning and visualizing networks, not a WPA2 password cracking utility.
  • C. WPA2's compliance with IEEE 802.11i does not make it immune to offline passphrase cracking - weak passphrases remain exploitable via the captured handshake attack.
  • D. Changing the MAC address is used for identity spoofing or bypassing MAC-based access controls, not for decrypting WPA2 encryption or recovering the network key.

Concept tested. WPA2 handshake capture and offline cracking technique

Reference. https://www.aircrack-ng.org/doku.php?id=cracking_wpa

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 312-50V9 Practice