nerdexam
GIAC

GPEN · Question #47

GPEN Question #47: Real Exam Question with Answer & Explanation

The correct answer is D. IPSec VPN. An IPSec VPN encrypts all traffic end-to-end, so even if a user connects to a rogue evil twin access point, intercepted data remains unreadable to the attacker.

Question

Which of the following can be used to mitigate the evil twin phishing attack?

Options

  • ASARA
  • BObiwan
  • CMagic Lantern
  • DIPSec VPN

Explanation

An IPSec VPN encrypts all traffic end-to-end, so even if a user connects to a rogue evil twin access point, intercepted data remains unreadable to the attacker.

Common mistakes.

  • A. SARA (Security Auditor's Research Assistant) is a network vulnerability scanning tool used for auditing, not a countermeasure against rogue access points.
  • B. Obiwan is a network monitoring tool, not a defense mechanism against evil twin phishing attacks.
  • C. Magic Lantern is an FBI keystroke-logging tool used for law enforcement surveillance and is unrelated to wireless attack mitigation.

Concept tested. Mitigating evil twin rogue AP attack with VPN encryption

Reference. https://www.cisa.gov/sites/default/files/publications/aa21-265a-avoiding-the-temptation-of-evil-twin-networks.pdf

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full GPEN Practice