Certified Ethical Hacker (CEH v11) — Question 241

You have compromised a server and successfully gained a root access. You want to pivot and pass traffic undetected over the network and evade any possible
Intrusion Detection System. What is the best approach?

Answer options

• A. Use Alternate Data Streams to hide the outgoing packets from this server.
• B. Use HTTP so that all traffic can be routed vis a browser, thus evading the internal Intrusion Detection Systems.
• C. Install Cryptcat and encrypt outgoing packets from this server.
• D. Install and use Telnet to encrypt all outgoing traffic from this server.

Correct answer: C

Explanation

The correct answer is C, as Cryptcat allows for the encryption of outgoing packets, which helps in concealing the data from detection systems. Option A is incorrect because Alternate Data Streams do not provide encryption and may still be detected. Option B, while it suggests a common protocol, does not inherently provide security against detection. Option D is incorrect since Telnet does not encrypt traffic, making it vulnerable to interception.