CompTIA PenTest+ (PT0-002) — Question 33

A penetration tester has established an on-path position between a target host and local network services but has not been able to establish an on-path position between the target host and the Internet. Regardless, the tester would like to subtly redirect HTTP connections to a spoofed server IP. Which of the following methods would BEST support the objective?

Answer options

• A. Gain access to the target host and implant malware specially crafted for this purpose.
• B. Exploit the local DNS server and add/update the zone records with a spoofed A record.
• C. Use the Scapy utility to overwrite name resolution fields in the DNS query response.
• D. Proxy HTTP connections from the target host to that of the spoofed host.

Correct answer: B

Explanation

The correct answer is B because manipulating the local DNS server allows the attacker to change the resolution of the target host's requests to the spoofed server. Option A requires direct access to the target host, which is not necessary for this objective. Option C, while a valid technique, is less effective than changing the DNS records directly. Option D does not address redirecting the DNS requests and relies on a different method of interception.