Q. What is a pixie dust attack in the context of WPS vulnerabilities?

View solution

Q. How does Reaver function in exploiting WPS vulnerabilities?

View solution

Q. What is the maximum number of possible PINs that Reaver needs to brute-force in most cases?

View solution

Q. What is the Bluetooth attack method that involves the theft of information from Bluetooth-enabled devices?

View solution

Q. What is the primary concern with Bluetooth Low Energy (BLE) attacks?

View solution

Q. What is NFC commonly used for in day-to-day life?

View solution

Q. How do amplification attacks in the context of NFC work?

View solution

Q. Which tool is specifically designed for exploiting 802.11 protocol weaknesses and flaws?

View solution

Q. What capability does WiFite2 include for auditing wireless networks?

View solution

Q. What is Kismet primarily designed for?

View solution

Q. What type of attack is Fern primarily known for?

View solution

Q. Which type of RFID cards can be cloned using readily available cloning tools?

View solution

Q. What technology makes it possible to clone high-frequency 13.56 MHz RFID cards with phones?

View solution

Q. In what situation might wireless DoS be a legitimate technique for penetration testers?

View solution

Q. How can repeating traffic or conducting a relay attack be useful for a penetration tester?

View solution

Q. What may be required to gain access to a wired network in an on-site penetration test?

View solution

Q. What technique can be useful for a penetration tester to gain network access in a wireless network?

View solution

Q. What is a high-value target for penetration testers once they have gained network access?

View solution

Q. What on-path attacks can penetration testers conduct via ARP spoofing?

View solution

Q. Why are Windows NetBIOS and SMB services popular targets for penetration testers?

View solution