21 Apr Practice Test Question-Man-in-the-Middle Attacks
Preparing for your next security certification exam? After trying your hand at this practice test question, join the FREE CertMike Study Group for the CISSP, Security+, CySA+, PenTest+, CISM+ or SSCP certification to receive new questions each week. You’ll also receive free access to my customized study strategies.
Which one of the following techniques is most likely to enable an attacker to engage in a man-in-the-middle attack, assuming that the attacker has access to the victim’s local network?
A. ARP spoofing
B. Cross Site Scripting
C. Buffer Overflow
D. Directory Traversal
Correct Answer: A
By conducting an ARP spoofing attack, the attacker may fool the victim into thinking that a system controlled by the attacker is the local router or another piece of network infrastructure. They may then route traffic from that victim through their device, eavesdropping on communications and potentially engaging in a man-in-the-middle attack.
Get a copy of my official CertMike Practice Test books for the Security+ exam, CISSP exam, SSCP exam, or CySA+ exam and practice with hundreds of questions designed just like the real test!
No Comments