GIAC Certified Incident Handler (GCIH) — Question 182

John works as a professional Ethical Hacker. He is assigned a project to test the security of www.weare-secure.com. He is working on the Linux operating system.
He wants to sniff the we-are-secure network and intercept a conversation between two employees of the company through session hijacking. Which of the following tools will John use to accomplish the task?

Answer options

• A. Hunt
• B. IPChains
• C. Ethercap
• D. Tripwire

Correct answer: A

Explanation

The correct tool for session hijacking is Hunt, as it is specifically designed for monitoring and intercepting network traffic. IPChains is used for firewall configurations, Ethercap is a passive network sniffer and does not perform session hijacking, and Tripwire is a file integrity checker, making them unsuitable for John's objective.