nerdexam
GIAC

GPEN · Question #122

GPEN Question #122: Real Exam Question with Answer & Explanation

The correct answer is A. TCP session hijacking is when a hacker takes over a TCP session between two machines. B. It is the exploitation of a valid computer session to gain unauthorized access to information or C. Use of a long random number or string as the session key reduces session hijacking.. Session hijacking is the takeover of an active authenticated session, and strong random session tokens are a primary mitigation against it.

Question

Which of the following statements are true about session hijacking? Each correct answer represents a complete solution. Choose all that apply.

Options

  • ATCP session hijacking is when a hacker takes over a TCP session between two machines.
  • BIt is the exploitation of a valid computer session to gain unauthorized access to information or
  • CUse of a long random number or string as the session key reduces session hijacking.
  • DIt is used to slow the working of victim's network resources.

Explanation

Session hijacking is the takeover of an active authenticated session, and strong random session tokens are a primary mitigation against it.

Common mistakes.

  • D. Slowing or exhausting a victim's network resources describes a Denial-of-Service (DoS) attack, which is a distinct attack category unrelated to session hijacking.

Concept tested. Session hijacking definition and mitigation techniques

Reference. https://owasp.org/www-community/attacks/Session_hijacking_attack

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full GPEN Practice