CompTIA PenTest+ (PT1-002) — Question 19

A penetration tester has been contracted to review wireless security. The tester has deployed a malicious wireless AP that mimics the configuration of the target enterprise WiFi. The penetration tester now wants to try to force nearby wireless stations to connect to the malicious AP. Which of the following steps should the tester take NEXT?

Answer options

• A. Send deauthentication frames to the stations.
• B. Perform jamming on all 2.4GHz and 5GHz channels.
• C. Set the malicious AP to broadcast within dynamic frequency selection channels.
• D. Modify the malicious AP configuration to not use a pre-shared key.

Correct answer: A

Explanation

The correct answer is A, as sending deauthentication frames will disconnect clients from the legitimate AP and prompt them to connect to the rogue AP. Option B, performing jamming, may disrupt all communications but is not a targeted approach to lure clients. Option C, broadcasting within dynamic frequency selection channels, does not directly influence client connection decisions. Option D, modifying the configuration to not use a pre-shared key, does not assist in forcing connections and could deter users due to security concerns.