312-50V9 · Question #584
An attacker runs netcat tool to transfer a secret file between two hosts. Machine A: netcat -l -p 1234 < secretfile Machine B: netcat 192.168.3.4 > 1234 He is worried about information being sniffed o
The correct answer is D. Use cryptcat instead of netcat. Standard netcat has no built-in encryption; cryptcat is the purpose-built variant that wraps netcat functionality with Twofish encryption to protect data in transit.
Question
An attacker runs netcat tool to transfer a secret file between two hosts. Machine A: netcat -l -p 1234 < secretfile Machine B: netcat 192.168.3.4 > 1234 He is worried about information being sniffed on the network. How would the attacker use netcat to encrypt the information before transmitting onto the wire?
Options
- AMachine A: netcat -l -p -s password 1234 < testfile
- BMachine A: netcat -l -e magickey -p 1234 < testfile
- CMachine A: netcat -l -p 1234 < testfile -pw password
- DUse cryptcat instead of netcat
How the community answered
(21 responses)- C5% (1)
- D95% (20)
Why each option
Standard netcat has no built-in encryption; cryptcat is the purpose-built variant that wraps netcat functionality with Twofish encryption to protect data in transit.
The flag '-s password' is not a netcat encryption option; in some builds '-s' specifies the source IP address to bind to, and no valid encryption flag with that form exists in netcat.
The flag '-e magickey' does not exist as an encryption parameter; '-e' in netcat is used to execute an external program after a connection is established, not to encrypt traffic.
The flag '-pw password' is not a recognized netcat parameter at all; netcat has no native password or encryption capability regardless of the flag syntax used.
Cryptcat is a modified version of netcat that transparently encrypts all transmitted data using the Twofish symmetric cipher, directly solving the problem of data being readable on the wire. Its command syntax mirrors netcat exactly, so the attacker simply substitutes 'cryptcat' for 'netcat' in both commands to enable encryption without changing any other arguments.
Concept tested: Netcat vs. cryptcat encrypted file transfer over TCP
Source: https://www.kali.org/tools/cryptcat/
Topics
Community Discussion
No community discussion yet for this question.