Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location
Mob_nav_barsMENU

GIAC Exam GPEN Topic 3 Question 19 Discussion

Actual exam question for GIAC's GPEN exam
Question #: 19
Topic #: 3
[All GPEN Questions]

In which of the following attacks does an attacker use packet sniffing to read network traffic between two parties to steal the session cookie?

Show Suggested Answer Hide Answer
Suggested Answer: B

by Barrett at May 05, 2022, 07:30 PM

Limited Time Offer

25%

Off

Get Premium GPEN Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Elliott
8 days ago
Session fixation is a different issue, so B it is!
upvoted 0 times
...
Martha
14 days ago
Wait, are we sure it's not C? Sounds fishy.
upvoted 0 times
...
Sheron
19 days ago
Agreed, B is the right answer!
upvoted 0 times
...
Brandon
25 days ago
I thought ARP spoofing was the main culprit here?
upvoted 0 times
...
Allene
30 days ago
Definitely B, session sidejacking is all about that cookie theft!
upvoted 0 times
...
Corazon
1 month ago
I'm leaning towards session sidejacking because it specifically mentions stealing session cookies, but I could be mixing it up with another type of attack.
upvoted 0 times
...
Dyan
1 month ago
Session fixation sounds familiar, but I can't recall if it involves packet sniffing. I feel like I need to review that topic again.
upvoted 0 times
...
Earleen
1 month ago
I think this might be related to session hijacking, but I'm not sure if it's specifically session sidejacking or something else.
upvoted 0 times
...
Justine
1 month ago
I remember practicing a question about ARP spoofing, but I don't think that's the right answer here since it doesn't directly involve session cookies.
upvoted 0 times
...
Margurite
1 month ago
Hmm, I'm a bit confused about the different log levels and what exactly needs to be logged. I'll need to carefully review the policy file examples and make sure I understand the requirements before making any changes.
upvoted 0 times
...
Lonny
1 month ago
I'm not entirely sure about this one. The question mentions a few different types of scans, and I'm not completely familiar with the differences between them. I'll have to think this through carefully and review my notes on network scanning techniques.
upvoted 0 times
...
Troy
1 month ago
I'm not totally confident, but my initial thought is that the statement is True. Lower net retention would lead to more unpredictability in the reserves, so the variability should increase. I'll double-check my understanding before answering.
upvoted 0 times
...
Mickie
1 month ago
This looks pretty straightforward. I'm pretty sure Python, Perl, and JavaScript are the right answers.
upvoted 0 times
...

Save Cancel