A penetration tester is performing an on-path (man-in-the-middle) attack on a local network segment to intercept traffic between a client and a server. Which technique is MOST commonly used to redirect the victim's traffic through the attacker's machine on a switched network?

Question

Accepted Answer

B. ARP poisoning. ARP poisoning (ARP spoofing) sends gratuitous ARP replies that associate the attacker's MAC address with a legitimate IP address (such as the default gateway) in the victim's ARP cache. This causes the victim to send traffic intended for the gateway to the attacker's machine, enabling on-path interception on a switched local network segment.

A penetration tester is performing an on-path (man-in-the-middle) attack on a local network segment to intercept traffic between a client and a server. Which technique is MOST commonly used to redirect the victim's traffic through the attacker's machine on a switched network?

Related Questions

Discussion