nerdexam
ExamsGCIHQuestions#92
GIAC

GCIH · Question #92

GCIH Question #92: Real Exam Question with Answer & Explanation

The correct answer is C: Backscatter. A backscatter attack involves an attacker forging the victim's IP address as the source in packets sent to many third-party hosts, which then flood the victim with unsolicited reply traffic.

Incident Response & Cyber Kill Chain

Question

In which of the following attacks does an attacker spoof the source address in IP packets that are sent to the victim?

Options

  • ADos
  • BDDoS
  • CBackscatter
  • DSQL injection

Explanation

A backscatter attack involves an attacker forging the victim's IP address as the source in packets sent to many third-party hosts, which then flood the victim with unsolicited reply traffic.

Common mistakes.

  • A. A standard DoS attack originates from a single source and overwhelms a target, but is not specifically defined by IP source address spoofing directed at reflectors.
  • B. DDoS uses many distributed attacking machines to flood a target but does not specifically describe the spoofed-source reflection mechanism that defines backscatter.
  • D. SQL injection manipulates database queries through unsanitized user input and has nothing to do with IP packet source address spoofing.

Concept tested. IP source spoofing in backscatter reflection attacks

Reference. https://www.caida.org/projects/backscatter/

Topics

#backscatter attack#IP spoofing#source address spoofing#network attacks

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full GCIH Practice