Certified Ethical Hacker (CEH v10) — Question 91

Session splicing is an IDS evasion technique in which an attacker delivers data in multiple, smallsized packets to the target computer, making it very difficult for an
IDS to detect the attack signatures. Which tool can be used to perform session splicing attacks?

Answer options

• A. tcpsplice
• B. Burp
• C. Hydra
• D. Whisker

Correct answer: D

Explanation

Whisker is specifically designed to carry out session splicing attacks, making it the correct choice. The other options, while useful for various tasks in security testing, do not have the capability to perform session splicing effectively.