EC-Council Certified Security Analyst (ECSA v10) — Question 15

Frank is performing a wireless pen testing for an organization. Using different wireless attack techniques, he successfully cracked the WPA-PSK key. He is trying to connect to the wireless network using the WPA-PSK key. However, he is unable to connect to the WLAN as the target is using MAC filtering.
What would be the easiest way for Frank to circumvent this and connect to the WLAN?

Answer options

• A. Attempt to crack the WEP key
• B. Crack the Wi-Fi router login credentials and disable the ACL
• C. Sniff traffic off the WLAN and spoof his MAC address to the one that he has captured
• D. Use deauth command from aircrack-ng to deauthenticate a connected user and hijack the session

Correct answer: C

Explanation

The correct answer is C because by sniffing the traffic, Frank can identify a valid MAC address and spoof his own to match it, allowing him to bypass MAC filtering. Option A is incorrect as WEP is not relevant to WPA-PSK networks. Option B is more complex and requires access to the router, which is not the easiest solution. Option D involves disrupting another user's connection, which is unnecessary when spoofing the MAC address will suffice.