Home » CompTIA » SY0-501 v.2 » An in-house penetration tester is using a packet capture device to listen in on network communications. This is an example of:

An in-house penetration tester is using a packet capture device to listen in on network communications. This is an example of:

09/15/2018 – by Mod_GuideK 8

An in-house penetration tester is using a packet capture device to listen in on network communications. This is an example of:
A. Passive reconnaissance
B. Persistence
C. Escalation of privileges
D. Exploiting the switch

SHOW ANSWERS

How To Pass SY0-601 Exam?

CompTIA SY0-601 PDF dumps.

High quality SY0-601 pdf and software. VALID exam to help you pass.

8 thoughts on “An in-house penetration tester is using a packet capture device to listen in on network communications. This is an example of:”

MelB says:

05/23/2020 at 3:24 AM

D. When an attacker is exploiting the switch internally via port monitoring (or port mirroring) to acquire network traffic for analysis by a packet capture device. It enables monitoring of Ethernet ports.
Not (A) passive reconnaissance because it involves packet SNIFFING of a NIC not packet CAPTURE on a network.

1

Reply
MelB says:

02/04/2020 at 4:16 AM

D. The question itself says nothing about active or passive. Only the answers do. the question merely states “penetration tester is using a packet capture device to listen in on network communications.” That can easily be done by port mirroring – capturing packets. With port mirroring enabled, the switch sends a copy of all network packets seen on one port (or an entire VLAN) to another port, where the packet can be analyzed.

1

Reply
1. MelB says:
  
  03/11/2020 at 6:16 PM
  
  Passive reconnaissance: The process of collecting information about an intended target of a malicious hack without the target knowing what is occurring. Typical passive reconnaissance can include physical observation of an enterprise’s building, sorting through discarded computer equipment in an attempt to find equipment that contains data or discarded paper with usernames and passwords, eavesdropping on employee conversations, researching the target through common Internet tools such as Whois, impersonating an employee in an attempt to collect information, and packet sniffing.
  
  Reply
Anonymous says:

11/02/2019 at 9:08 PM

Isn’t this active reconaissance not passive? passive doesn’t use tools…Only thing left is D

1

Reply
1. Netapo says:
  
  11/19/2019 at 10:28 AM
  
  Wow you are very misleading. Congratulations.
  
  Reply
Jay Harper says:

10/20/2019 at 7:43 PM

A lot of the answers in these dumps are highly dubious. I’d go with A

Reply
Jay says:

05/28/2019 at 7:37 PM

Answer is definitely A. Choice D doesn’t make any sense.

Reply
DC says:

05/20/2019 at 10:13 AM

The answer is completely stupid.

It is A passive reconnaissance.

Exploiting the switch just with the word “Exploiting” demonstrate that it isn’t passive but highly active so…

Who chose the answers seriously. This could confuse so much ppl in their learning and training phase.

Regards

Reply

How To Pass SY0-601 Exam?

CompTIA SY0-601 PDF dumps.

8 thoughts on “An in-house penetration tester is using a packet capture device to listen in on network communications. This is an example of:”

Leave a Reply Cancel reply