GIAC Certified Incident Handler (GCIH) — Question 201

Which of the following methods can be used to detect session hijacking attack?

Answer options

• A. nmap
• B. Brutus
• C. ntop
• D. sniffer

Correct answer: D

Explanation

The correct answer is D, sniffer, as it allows for the monitoring of network traffic to identify unauthorized session activities. Options A, B, and C do not specifically target session hijacking detection; nmap is primarily used for network scanning, Brutus is a password cracking tool, and ntop is a network traffic monitoring tool that does not focus specifically on session hijacking.