New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

GIAC GPEN Exam - Topic 3 Question 19 Discussion

Actual exam question for GIAC's GPEN exam
Question #: 19
Topic #: 3
[All GPEN Questions]

In which of the following attacks does an attacker use packet sniffing to read network traffic between two parties to steal the session cookie?

Show Suggested Answer Hide Answer
Suggested Answer: B

by Barrett at May 05, 2022, 06:30 PM

Limited Time Offer

25%

Off

Get Premium GPEN Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Elliott
4 months ago
Session fixation is a different issue, so B it is!
upvoted 0 times
...
Martha
4 months ago
Wait, are we sure it's not C? Sounds fishy.
upvoted 0 times
...
Sheron
4 months ago
Agreed, B is the right answer!
upvoted 0 times
...
Brandon
4 months ago
I thought ARP spoofing was the main culprit here?
upvoted 0 times
...
Allene
5 months ago
Definitely B, session sidejacking is all about that cookie theft!
upvoted 0 times
...
Corazon
5 months ago
I'm leaning towards session sidejacking because it specifically mentions stealing session cookies, but I could be mixing it up with another type of attack.
upvoted 0 times
...
Dyan
5 months ago
Session fixation sounds familiar, but I can't recall if it involves packet sniffing. I feel like I need to review that topic again.
upvoted 0 times
...
Earleen
5 months ago
I think this might be related to session hijacking, but I'm not sure if it's specifically session sidejacking or something else.
upvoted 0 times
...
Justine
5 months ago
I remember practicing a question about ARP spoofing, but I don't think that's the right answer here since it doesn't directly involve session cookies.
upvoted 0 times
...
Margurite
5 months ago
Hmm, I'm a bit confused about the different log levels and what exactly needs to be logged. I'll need to carefully review the policy file examples and make sure I understand the requirements before making any changes.
upvoted 0 times
...
Lonny
5 months ago
I'm not entirely sure about this one. The question mentions a few different types of scans, and I'm not completely familiar with the differences between them. I'll have to think this through carefully and review my notes on network scanning techniques.
upvoted 0 times
...
Troy
5 months ago
I'm not totally confident, but my initial thought is that the statement is True. Lower net retention would lead to more unpredictability in the reserves, so the variability should increase. I'll double-check my understanding before answering.
upvoted 0 times
...
Mickie
5 months ago
This looks pretty straightforward. I'm pretty sure Python, Perl, and JavaScript are the right answers.
upvoted 0 times
...

Save Cancel