nerdexam
ExamsGCIHQuestions#471
GIAC

GCIH · Question #471

GCIH Question #471: Real Exam Question with Answer & Explanation

The correct answer is C: Karmetasploit. Karmetasploit is a Metasploit-based tool specifically designed to create a rogue access point by responding to client probe requests and serving fake network services to connected victims.

Question

Which tool can sniff probe requests from a wireless client, pretend to be the client's legitimate access point, and offer fake network services to the client?

Options

  • AInSSider
  • BAircrack-ng
  • CKarmetasploit
  • DWellenreiter

Explanation

Karmetasploit is a Metasploit-based tool specifically designed to create a rogue access point by responding to client probe requests and serving fake network services to connected victims.

Common mistakes.

  • A. inSSIDer is a Wi-Fi scanning and network analysis tool used to visualize nearby access points and signal strength; it does not perform rogue AP or fake service attacks.
  • B. Aircrack-ng is a suite focused on WEP and WPA/WPA2 key cracking through packet capture and analysis; it does not impersonate access points or host fake network services.
  • D. Wellenreiter is a legacy passive wireless network discovery and auditing tool for Linux; it does not perform active rogue AP impersonation or serve fake services to clients.

Concept tested. Rogue access point attack using Karmetasploit

Reference. https://www.offensive-security.com/metasploit-unleashed/karmetasploit/

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full GCIH Practice