Certified Ethical Hacker (CEH v11) — Question 282
Henry is a penetration tester who works for XYZ organization. While performing enumeration on a client organization, he queries the DNS server for a specific cached DNS record. Further, by using this cached record, he determines the sites recently visited by the organization's user.
What is the enumeration technique used by Henry on the organization?
Answer options
- A. DNS zone walking
- B. DNS cache snooping
- C. DNS cache poisoning
- D. DNSSEC zone walking
Correct answer: B
Explanation
The correct answer is B, DNS cache snooping, as it involves querying a DNS server to check for cached records to gather information about user activity. Option A, DNS zone walking, refers to a method for obtaining all records in a zone, while C, DNS cache poisoning, involves corrupting the DNS cache with false information. Option D, DNSSEC zone walking, pertains to security extensions for DNS and does not relate to the technique used in this scenario.