GPEN Exam QuestionsBrowse all questions from this exam

GPEN Exam - Question 61


Which of the following tools is used for vulnerability scanning and calls Hydra to launch a dictionary attack?

Show Answer
Correct Answer: D

SARA (Security Auditor's Research Assistant) is a security analysis tool that includes features for vulnerability scanning and can call Hydra to perform dictionary attacks. While tools like Nmap and Nessus are also used for vulnerability scanning, they do not specifically call Hydra for dictionary attacks. Whishker is not a well-known tool for this purpose.

Discussion

3 comments
Sign in to comment
Omo_Mushin
May 21, 2022

Please delete this comment, it was meant for the next question below..

Omo_Mushin
May 21, 2022

ARP spoofing is a type of attack in which a malicious actor sends falsified ARP (Address Resolution Protocol) messages over a local area network. This results in the linking of an attacker’s MAC address with the IP address of a legitimate computer or server on the network. Once the attacker’s MAC address is connected to an authentic IP address, the attacker will begin receiving any data that is intended for that IP address. ARP spoofing can enable malicious parties to intercept, modify or even stop data in-transit. ARP spoofing attacks can only occur on local area networks that utilize the Address Resolution Protocol.

79c58bbOption: D
May 17, 2024

SARA (Security Auditor's Research Assistant) is a security analysis tool that includes features for vulnerability scanning and can call Hydra to perform dictionary attacks.