nerdexam
EC-Council

312-50V9 · Question #584

An attacker runs netcat tool to transfer a secret file between two hosts. Machine A: netcat -l -p 1234 < secretfile Machine B: netcat 192.168.3.4 > 1234 He is worried about information being sniffed o

The correct answer is D. Use cryptcat instead of netcat. Standard netcat has no built-in encryption; cryptcat is the purpose-built variant that wraps netcat functionality with Twofish encryption to protect data in transit.

System Hacking

Question

An attacker runs netcat tool to transfer a secret file between two hosts. Machine A: netcat -l -p 1234 < secretfile Machine B: netcat 192.168.3.4 > 1234 He is worried about information being sniffed on the network. How would the attacker use netcat to encrypt the information before transmitting onto the wire?

Options

  • AMachine A: netcat -l -p -s password 1234 < testfile
  • BMachine A: netcat -l -e magickey -p 1234 < testfile
  • CMachine A: netcat -l -p 1234 < testfile -pw password
  • DUse cryptcat instead of netcat

How the community answered

(21 responses)
  • C
    5% (1)
  • D
    95% (20)

Why each option

Standard netcat has no built-in encryption; cryptcat is the purpose-built variant that wraps netcat functionality with Twofish encryption to protect data in transit.

AMachine A: netcat -l -p -s password 1234 < testfile

The flag '-s password' is not a netcat encryption option; in some builds '-s' specifies the source IP address to bind to, and no valid encryption flag with that form exists in netcat.

BMachine A: netcat -l -e magickey -p 1234 < testfile

The flag '-e magickey' does not exist as an encryption parameter; '-e' in netcat is used to execute an external program after a connection is established, not to encrypt traffic.

CMachine A: netcat -l -p 1234 < testfile -pw password

The flag '-pw password' is not a recognized netcat parameter at all; netcat has no native password or encryption capability regardless of the flag syntax used.

DUse cryptcat instead of netcatCorrect

Cryptcat is a modified version of netcat that transparently encrypts all transmitted data using the Twofish symmetric cipher, directly solving the problem of data being readable on the wire. Its command syntax mirrors netcat exactly, so the attacker simply substitutes 'cryptcat' for 'netcat' in both commands to enable encryption without changing any other arguments.

Concept tested: Netcat vs. cryptcat encrypted file transfer over TCP

Source: https://www.kali.org/tools/cryptcat/

Topics

#netcat#cryptcat#file transfer encryption#network tools

Community Discussion

No community discussion yet for this question.

Full 312-50V9 Practice