SY0-301 · Question #411
After viewing wireless traffic, an attacker notices the following networks are being broadcasted by local access points: Corpnet Coffeeshop FreePublicWifi Using this information the attacker spoofs a
The correct answer is B. Evil twin C. Packet sniffing. Two techniques are at work here. First, 'viewing wireless traffic' describes Packet Sniffing (C) - the attacker passively captures wireless frames to discover the SSIDs being broadcast by nearby access points. Second, using those discovered SSIDs to impersonate a legitimate netwo
Question
After viewing wireless traffic, an attacker notices the following networks are being broadcasted by local access points:
Corpnet Coffeeshop FreePublicWifi Using this information the attacker spoofs a response to make nearby laptops connect back to a malicious device. Which of the following techniques are used above? (Select TWO).
Options
- ABlue snarfing
- BEvil twin
- CPacket sniffing
- DWar dialing
- ERogue access point
How the community answered
(18 responses)- A6% (1)
- B78% (14)
- D6% (1)
- E11% (2)
Explanation
Two techniques are at work here. First, 'viewing wireless traffic' describes Packet Sniffing (C) - the attacker passively captures wireless frames to discover the SSIDs being broadcast by nearby access points. Second, using those discovered SSIDs to impersonate a legitimate network and lure clients to connect to a malicious device describes an Evil Twin (B) - a rogue AP that mimics a real network's name to perform a man-in-the-middle attack. Blue snarfing is Bluetooth data theft, war dialing scans phone lines for modems, and while a rogue AP (E) is close, 'evil twin' specifically denotes the impersonation/spoofing aspect described here.
Topics
Community Discussion
No community discussion yet for this question.