CompTIA Security+ (SY0-501) — Question 573

Which of the following attacks is used to capture the WPA2 handshake?

Answer options

• A. Replay
• B. IV
• C. Evil twin
• D. Disassociation

Correct answer: D

Explanation

The correct answer is D, Disassociation, as this attack forces a user off a Wi-Fi network, prompting them to reconnect and allowing the attacker to capture the WPA2 handshake during the reconnection process. The other options, while related to network security, do not specifically target the WPA2 handshake capture method.