CompTIACompTIA
PT0-002 · Question #93
PT0-002 Question #93: Real Exam Question with Answer & Explanation
The correct answer is B: Capture traffic using Wireshark.. FTP is not a secure protocol so your user name and password is in clear text.
Attacks and Exploits
Question
A penetration tester would like to obtain FTP credentials by deploying a workstation as an on- path attack between the target and the server that has the FTP protocol. Which of the following methods would be the BEST to accomplish this objective?
Options
- AWait for the next login and perform a downgrade attack on the server.
- BCapture traffic using Wireshark.
- CPerform a brute-force attack over the server.
- DUse an FTP exploit against the server.
Explanation
FTP is not a secure protocol so your user name and password is in clear text.
Topics
#FTP#Packet sniffing#Man-in-the-Middle#Credential harvesting
Community Discussion
No community discussion yet for this question.