CompTIA Network+ (N10-007) — Question 508

An analyst is developing a proof of concept of a wireless-based attack as part of a penetration test against an organization's network. As part of the attack, the analyst launches a fake access point matching the SSID of the organization's guest access network. When a user connects to the fake access point, the analyst allows the traffic to flow through the access point to the legitimate site while the data traversing the network is logged for latest analysis and exploitation. Which of the following attacks has the analyst successfully performed in this scenario?

Answer options

• A. Bluesnarfing
• B. Session hijacking
• C. MAC spoofing
• D. VLAN hopping
• E. Man-in-the-middle

Correct answer: E

Explanation

The correct answer is E, Man-in-the-middle, because the analyst intercepts and relays communications between the user and the legitimate site, allowing for traffic analysis and potential exploitation. The other options do not involve intercepting traffic in this manner; for example, Bluesnarfing is about unauthorized access to Bluetooth devices, Session hijacking involves taking over a session, MAC spoofing refers to changing a device's MAC address, and VLAN hopping is about bypassing VLAN segmentation.