Certified Ethical Hacker (CEH v11) — Question 144

An attacker is trying to redirect the traffic of a small office. That office is using their own mail server, DNS server and NTP server because of the importance of their job. The attacker gain access to the DNS server and redirect the direction www.google.com to his own IP address. Now when the employees of the office want to go to Google they are being redirected to the attacker machine. What is the name of this kind of attack?

Answer options

• A. MAC Flooding
• B. Smurf Attack
• C. DNS spoofing
• D. ARP Poisoning

Correct answer: C

Explanation

The correct answer is DNS spoofing because it involves manipulating DNS records to redirect users to a malicious site. The other options do not relate to changing DNS resolutions: MAC Flooding pertains to overwhelming a switch's MAC address table, Smurf Attack is a type of DDoS attack using ICMP, and ARP Poisoning involves sending fake ARP messages to associate an attacker's MAC address with the IP of a legitimate host.