Q. How does DNS cache poisoning work?

View solution

Q. What is a potential method for penetration testers to achieve effects similar to DNS cache poisoning?

View solution

Q. Why are DNS cache poisoning attacks less likely to be usefully exploitable for most penetration testers?

View solution

Q. What is the primary objective of penetration testers in on-path attacks?

View solution

Q. What is another term used for on-path attacks?

View solution

Q. How does ARP spoofing work in conducting on-path attacks?

View solution

Q. In the context of ARP spoofing, what can an attacker achieve by falsifying ARP messages on a local network?

View solution

Q. Where is ARP spoofing effective, and what tool in Kali Linux can be used to conduct this attack?

View solution

Q. What is the primary purpose of MAC address spoofing for a penetration tester?

View solution

Q. What is a common use for replay attacks?

View solution

Q. What is a specific type of replay attack that penetration testers commonly use?

View solution

Q. What is the primary focus of relay attacks compared to other on-path attacks?

View solution

Q. What is the primary purpose of NAC (Network Access Control) systems in organizational networks?

View solution

Q. How do NAC systems typically detect new devices connecting to a network?

View solution

Q. What approach might a penetration tester take to bypass NAC?

View solution

Q. How can systems relying on MAC addresses for security controls be bypassed?

View solution

Q. Which tool in Kali Linux can be used to change the MAC address of a system, making it useful for attempting to bypass systems relying on MAC addresses for security controls?

View solution

Q. What are the three major types of denial-of-service (DoS) attacks?

View solution

Q. Why might unintentional DoS conditions occur during a penetration test?

View solution

Q. What are some common tools for creating DoS conditions in a penetration test?

View solution