Implementing and Operating Cisco Security Core Technologies (SCOR) — Question 207

How is data sent out to the attacker during a DNS tunneling attack?

Answer options

• A. as part of the domain name
• B. as part of the UDP/53 packet payload
• C. as part of the TCP/53 packet header
• D. as part of the DNS response packet

Correct answer: A

Explanation

The correct answer is A because during a DNS tunneling attack, data is encoded within the domain name itself, allowing it to be sent to the attacker. The other options describe different layers of DNS communication, but they do not specifically relate to how data is exfiltrated in this context.