CompTIA PenTest+ (PT0-001) — Question 50

A penetration tester is attempting to capture a handshake between a client and an access point by monitoring a WPA2-PSK secured wireless network. The tester is monitoring the correct channel for the identified network, but has been unsuccessful in capturing a handshake. Given the scenario, which of the following attacks would BEST assist the tester in obtaining this handshake?

Answer options

• A. Karma attack
• B. Deauthentication attack
• C. Fragmentation attack
• D. SSDI broadcast flood

Correct answer: B

Explanation

The Deauthentication attack is effective because it forces clients to disconnect from the access point, prompting them to reconnect and thus generate a handshake that can be captured. The Karma attack is not focused on capturing handshakes, while the Fragmentation attack and SSDI broadcast flood do not directly facilitate handshake capture in this context.