PT0-003 · Question #222
PT0-003 Question #222: Real Exam Question with Answer & Explanation
The correct answer is B: ARP poisoning. An on-path attack (previously known as MITM ?Man-in-the-Middle) allows an attacker to intercept and modify communication between two parties. Attackers send fake ARP replies to associate their MAC address with the IP address of a legitimate device (e.g., gateway). This forces tra
Question
A penetration tester is performing a network security assessment. The tester wants to intercept communication between two users and then view and potentially modify transmitted data. Which of the following types of on-path attacks would be best to allow the penetration tester to achieve this result?
Options
- ADNS spoofing
- BARP poisoning
- CVLAN hopping
- DSYN flooding
Explanation
An on-path attack (previously known as MITM ?Man-in-the-Middle) allows an attacker to intercept and modify communication between two parties. Attackers send fake ARP replies to associate their MAC address with the IP address of a legitimate device (e.g., gateway). This forces traffic to flow through the attacker's system, enabling packet capture and manipulation. Tools like Ettercap, Bettercap, and ARP spoofing scripts are commonly used.
Topics
Community Discussion
No community discussion yet for this question.