Certified Ethical Hacker (CEH v11) — Question 12

What is the way to decide how a packet will move from an untrusted outside host to a protected inside that is behind a firewall, which permits the hacker to determine which ports are open and if the packets can pass through the packet-filtering of the firewall?

Answer options

• A. Session hijacking
• B. Firewalking
• C. Man-in-the middle attack
• D. Network sniffing

Correct answer: B

Explanation

The correct answer is B, Firewalking, as it involves probing a firewall to discover which ports are open and determine the path of packets. Session hijacking (A) refers to taking over a session after it has been established, while a Man-in-the-middle attack (C) involves intercepting communications between two parties. Network sniffing (D) is the act of capturing packets on a network but does not specifically relate to the method of determining firewall rules.