CompTIA PenTest+ (PT0-002) — Question 355

A penetration tester wants to launch an attack that intercepts and alters network traffic between a client and a server. Which of the following tools should the penetration tester use to perform this network attack?

Answer options

• A. Nmap
• B. Ettercap
• C. Metasploit
• D. Netcat

Correct answer: B

Explanation

Ettercap is specifically designed for man-in-the-middle attacks, allowing the tester to intercept and modify traffic. Nmap is primarily a network scanning tool, Metasploit focuses on exploiting vulnerabilities rather than traffic manipulation, and Netcat is a versatile networking tool but not specifically aimed at intercepting and altering traffic.