Certified Ethical Hacker (CEH v12) — Question 87

Attacker Rony installed a rogue access point within an organization’s perimeter and attempted to intrude into its internal network. Johnson, a security auditor, identified some unusual traffic in the internal network that is aimed at cracking the authentication mechanism. He immediately turned off the targeted network and tested for any weak and outdated security mechanisms that are open to attack.
What is the type of vulnerability assessment performed by Johnson in the above scenario?

Answer options

• A. Wireless network assessment
• B. Application assessment
• C. Host-based assessment
• D. Distributed assessment

Correct answer: A

Explanation

The correct answer is A, as Johnson's actions focused on identifying vulnerabilities specific to the wireless network, particularly in response to the rogue access point. The other options do not apply because an application assessment would target software vulnerabilities, a host-based assessment would focus on individual devices, and a distributed assessment pertains to vulnerabilities across multiple sites.