312-50v12 Exam QuestionsBrowse all questions from this exam

312-50v12 Exam - Question 210


During a red team engagement, an ethical hacker is tasked with testing the security measures of an organization's wireless network. The hacker needs to select an appropriate tool to carry out a session hijacking attack. Which of the following tools should the hacker use to effectively perform session hijacking and subsequent security analysis, given that the target wireless network has the Wi-Fi Protected Access-pre-shared key (WPA-PSK) security protocol in place?

Show Answer
Correct Answer: B

To effectively perform session hijacking and subsequent security analysis on a wireless network secured with WPA-PSK, the ethical hacker should use bettercap. bettercap is a powerful and flexible framework designed for network attack and monitoring purposes. It is well-suited for performing Man-in-the-Middle (MitM) attacks, which are essential for session hijacking. bettercap can sniff network traffic, capture cookies, and exploit various network protocols to hijack sessions. It is capable of operating on networks with WPA-PSK, making it a suitable choice for this task.

Discussion

12 comments
Sign in to comment
insaniuntOption: B
Feb 12, 2024

B. bettercap

xbsumz
Feb 12, 2024

Could someone help me confirm the accuracy of this data

przemyslaw1Option: C
Feb 15, 2024

DroidSheep is a simple Android tool for web session hijacking

przemyslaw1
Feb 18, 2024

DroidSheep can capture sessions using the libpcap library and it supports OPEN networks, WEP encrypted networks, and WPA and WPA2 (PSK only) encrypted networks.

przemyslaw1Option: D
Feb 16, 2024

FaceNiff is an Android app that allows a user to sniff and intercept web-session profiles over the WiFi network that the user’s mobile device is connected to. Although FaceNiff can hijack sessions only when the WiFi network does not use the Extensible Authentication Protocol (EAP), it works on any private network, including open, Wired Equivalent Privacy (WEP), Wi-Fi Protected Access–pre-shared key (WPA-PSK), and WPA2-PSK networks.

sosindiOption: C
Feb 19, 2024

DroidSheep

duke_of_kamuluOption: C
Feb 21, 2024

i think the key WORD is SESSION HIJACKING -The DroidSheep tool is used for session hijacking on Android devices connected to a common wireless network. It obtains the session ID of active users on the Wi-Fi network and uses it to access a website as an authorized user. A DroidSheep user can easily observe the activities of authorized users on websites. It can also hijack social accounts by obtaining the session ID.

brrbrrOption: B
Feb 21, 2024

B. bettercap

sosindiOption: B
Feb 25, 2024

Bettercap - is a comprehensive network attack and monitoring framework suitable for various types of attacks, including session hijacking, on wireless networks with WPA-PSK security protocols. Hetty is a tool for wireless network analysis and auditing but does not specialize in session hijacking attacks. DroidSheep and FaceNiff are Android applications designed for session hijacking attacks targeting mobile devices, specifically over Wi-Fi networks.

anarchyeagleOption: B
Feb 28, 2024

ChatGPT: B. bettercap Explanation: bettercap: is a powerful, flexible, and portable tool designed for network attacks and monitoring. It is well-suited for a wide range of network attack scenarios, including session hijacking on wireless networks. bettercap is capable of performing Man-in-the-Middle (MitM) attacks, which are essential for session hijacking. It can sniff network traffic, capture cookies, and exploit various network protocols to hijack sessions. Its capabilities make it a suitable choice for attacking networks with WPA-PSK security, as it can work after gaining access to the network or when conducting attacks within the network perimeter.

Miro009900
May 20, 2024

Stop using ChatGPT all the time.Its mostly wrong.

mossjOption: B
Mar 22, 2024

B. bettercap CEHv12. 1026 bettercap is a portable framework written in Go that allows security researchers, red teamers, and reverse engineers to perform reconnaissance and various attacks on Wi-Fi networks, Bluetooth low energy devices, wireless HID devices, and IPv4/IPv6 networks. key here is and subsequent security analysis

LordXanderOption: B
Apr 2, 2024

I would go with B, because it is in the labs and EC likes to put questions about the tools they talk in detail about

GK2205Option: B
Jul 21, 2024

The difference here is between trying to compromise the network or devices on the network. Bettercap is for the network, most others here are for compromising devices.

GK2205
Jul 21, 2024

BTW - Bettercap does do hijacking also (HID, Bluetooth). Failed to highlight that fact in my original comment. it also does IP v4 / v6 MITM.