CSSLP · Question #225
CSSLP Question #225: Real Exam Question with Answer & Explanation
The correct answer is C: Ping flood attack. An ethical hacker sending a large number of ICMP ECHO packets to a target server to test for DoS attacks is performing a Ping flood attack. This technique overwhelms the target with ICMP requests, consuming its resources and making it unresponsive.
Question
Samantha works as an Ethical Hacker for we-are-secure Inc. She wants to test the security of the we- are-secure server for DoS attacks. She sends large number of ICMP ECHO packets to the target computer. Which of the following DoS attacking techniques will she use to accomplish the task?
Options
- ASmurf dos attack
- BLand attack
- CPing flood attack
- DTeardrop attack
Explanation
An ethical hacker sending a large number of ICMP ECHO packets to a target server to test for DoS attacks is performing a Ping flood attack. This technique overwhelms the target with ICMP requests, consuming its resources and making it unresponsive.
Common mistakes.
- A. A Smurf DoS attack is a distributed denial-of-service attack where a large number of ICMP ECHO requests are sent to a network's broadcast address using a spoofed source IP address, causing all hosts on the network to reply to the spoofed target.
- B. A Land attack involves sending a TCP SYN packet to a target with both the source and destination IP addresses and ports set to the same value, causing the target to enter an infinite loop trying to communicate with itself.
- D. A Teardrop attack exploits vulnerabilities in the reassembly of fragmented IP packets, sending malformed fragmented packets that cause the target system to crash or freeze when attempting to reassemble them.
Concept tested. DoS attack techniques - Ping flood
Topics
Community Discussion
No community discussion yet for this question.