Certified Ethical Hacker (CEH v10) — Question 181
You have successfully gained access to a Linux server and would like to ensure that the succeeding outgoing traffic from this server will not be caught by
Network-Based Intrusion Detection Systems (NIDS).
What is the best way to evade the NIDS?
Answer options
- A. Out of band signaling
- B. Protocol Isolation
- C. Encryption
- D. Alternate Data Streams
Correct answer: C
Explanation
Encryption is the most effective method to evade NIDS because it makes the data unreadable to the detection systems, preventing them from analyzing the contents of the traffic. The other options, such as Out of band signaling and Protocol Isolation, do not directly obscure the data being sent, while Alternate Data Streams may not consistently bypass detection depending on the system's configuration.