nerdexam
ExamsSY0-301Questions#411
CompTIA

SY0-301 · Question #411

SY0-301 Question #411: Real Exam Question with Answer & Explanation

The correct answer is B: Evil twin. Two techniques are at work here. First, 'viewing wireless traffic' describes Packet Sniffing (C) - the attacker passively captures wireless frames to discover the SSIDs being broadcast by nearby access points. Second, using those discovered SSIDs to impersonate a legitimate netwo

Question

After viewing wireless traffic, an attacker notices the following networks are being broadcasted by local access points: Corpnet Coffeeshop FreePublicWifi Using this information the attacker spoofs a response to make nearby laptops connect back to a malicious device. Which of the following techniques are used above? (Select TWO).

Options

  • ABlue snarfing
  • BEvil twin
  • CPacket sniffing
  • DWar dialing
  • ERogue access point

Explanation

Two techniques are at work here. First, 'viewing wireless traffic' describes Packet Sniffing (C) - the attacker passively captures wireless frames to discover the SSIDs being broadcast by nearby access points. Second, using those discovered SSIDs to impersonate a legitimate network and lure clients to connect to a malicious device describes an Evil Twin (B) - a rogue AP that mimics a real network's name to perform a man-in-the-middle attack. Blue snarfing is Bluetooth data theft, war dialing scans phone lines for modems, and while a rogue AP (E) is close, 'evil twin' specifically denotes the impersonation/spoofing aspect described here.

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full SY0-301 Practice