CEH v9 Question of the Week: Sniff a Switched Network

Martin, a network security auditor, is aware that his company uses a switched network, which cannot be sniffed by some programs without some tweaking. What technique could he use to sniff his agency’s switched network?

A. ARP spoof the default gateway
B. Conduct MiTM against the switch
C. Launch smurf attack against the switch
D. Flood the switch with ICMP packets

Reveal Answer

The correct answer is A.

In computer networking, ARP spoofing, ARP cache poisoning or ARP poison routing, is a technique by which an attacker sends (spoofed) Address Resolution Protocol (ARP) messages onto a local area network. If Martin can successfully spoofs the default gateway, all the traffic in the network will be routed through his system and the network adapter can listen to all the traffic passing in the network.

 

Related Course
Certified Ethical Hacker v9

CEH v9 Question of the Week Series

• CEH v9 Question of the Week: Retina Scanners
• CEH v9 Question of the Week: Employee Behavior
• CEH v9 Question of the Week: CVE-2007-2447
• CEH v9 Question of the Week: SQL Injection
• CEH v9 Question of the Week: Web Application Penetration Testing
• CEH v9 Question of the Week: iptables
• CEH v9 Question of the Week: Examine Streams of Packets
• CEH v9 Question of the Week: Scans
• CEH v9 Question of the Week: SQL Injection
• CEH v9 Question of the Week: Standard Risk Assessment
• CEH v9 Question of the Week: Penetration Testing
• CEH v9 Question of the Week: SMB Over TCP/IP
• CEH v9 Question of the Week: Block Cipher
• CEH v9 Question of the Week: Prevent Future DoS Attacks
• CEH v9 Question of the Week: Same MAC Address
• CEH v9 Question of the Week: XSS Scripting
• CEH v9 Question of the Week: Sniff a Switched Network

from
CERTIVIEW