Certified Ethical Hacker (CEH v11) — Question 229

When conducting a penetration test, it is crucial to use all means to get all available information about the target network. One of the ways to do that is by sniffing the network. Which of the following cannot be performed by the passive network sniffing?

Answer options

• A. Capturing a network traffic for further analysis
• B. Collecting unencrypted information about usernames and passwords
• C. Modifying and replaying captured network traffic
• D. Identifying operating systems, services, protocols and devices

Correct answer: C

Explanation

The correct answer is C because passive network sniffing involves monitoring and capturing data without altering it, meaning modifications to traffic cannot occur. Options A, B, and D are all valid activities that can be performed during passive sniffing, as they involve observing and analyzing traffic without interference.