nerdexam
GIAC

GCIH · Question #563

Which of the following describes an attack where false Data Link Layer information is sent to a victim host to redirect packets to the attacker's host on the same subnet?

The correct answer is B. ARP cache poisoning. The ARP cache of a host keeps the mappings of the IP addresses -> MAC addresses (which are at the Data Link Layer). ARP cache poisoning (aka ARP spoofing) is where an attacker sends gratuitous ARP responses to the victim host, which fills their cache, and lies to the victim about

Vulnerability Exploitation & Privilege Escalation

Question

Which of the following describes an attack where false Data Link Layer information is sent to a victim host to redirect packets to the attacker's host on the same subnet?

Options

  • AHTTPS man in the middle
  • BARP cache poisoning
  • CDNS spoofing
  • DPass the hash attack

How the community answered

(44 responses)
  • A
    2% (1)
  • B
    91% (40)
  • C
    2% (1)
  • D
    5% (2)

Explanation

The ARP cache of a host keeps the mappings of the IP addresses -> MAC addresses (which are at the Data Link Layer). ARP cache poisoning (aka ARP spoofing) is where an attacker sends gratuitous ARP responses to the victim host, which fills their cache, and lies to the victim about which IP address is mapped to which MAC address.

Topics

#ARP cache poisoning#Data Link Layer#network spoofing#MITM

Community Discussion

No community discussion yet for this question.

Full GCIH Practice