CompTIA PenTest+ (PT0-003) — Question 31

A penetration tester is conducting a wireless security assessment for a client with 2.4GHz and 5GHz access points. The tester places a wireless USB dongle in the laptop to start capturing WPA2 handshakes. Which of the following steps should the tester take next?

Answer options

• A. Enable monitoring mode using Aircrack-ng.
• B. Use Kismet to automatically place the wireless dongle in monitor mode and collect handshakes.
• C. Run KARMA to break the password.
• D. Research WIGLE.net for potential nearby client access points.

Correct answer: A

Explanation

The correct answer is A because enabling monitoring mode using Aircrack-ng allows the tester to capture wireless packets effectively, which is necessary for obtaining WPA2 handshakes. Option B, while also useful, does not directly use Aircrack-ng as specified in the question. Option C is incorrect as KARMA is not used for capturing handshakes, and option D is unrelated to the immediate task of capturing WPA2 handshakes.