Nest 0 Cart
Nest Account
Popular Exams
All Categories...
Nest
Nest 0
Contact
Log In / Sign Up
Copyright 2024 © store. All rights reserved.
Home CWNP CWSP-205

CWNP CWSP-205 Exam Practice Questions (P. 4)

  • Full Access (119 questions)
  • Six months of Premium Access
  • Access to one million comments
  • Seamless ChatGPT Integration
  • Ability to download PDF files
  • Anki Flashcard files for revision
  • No Captcha & No AdSense
  • Advanced Exam Configuration
Get Contributor Access
Question #16
What software and hardware tools are used together to hijack a wireless station from the authorized wireless network onto an unauthorized wireless network?
(Choose 2)
  1. A
    RF jamming device and a wireless radio card
  2. B
    A low-gain patch antenna and terminal emulation software
  3. C
    A wireless workgroup bridge and a protocol analyzer
  4. D
    DHCP server software and access point software
  5. E
    MAC spoofing software and MAC DoS software

Correct Answer:
AD

Question #17
Given: Many computer users connect to the Internet at airports, which often have 802.11n access points with a captive portal for authentication.
While using an airport hot-spot with this security solution, to what type of wireless attack is a user susceptible? (Choose 2)
  1. A
    Man-in-the-Middle
  2. B
    Wi-Fi phishing
  3. C
    Management interface exploits
  4. D
    UDP port redirection
  5. E
    IGMP snooping

Correct Answer:
AB

Question #18
Given: During 802.1X/LEAP authentication, the username is passed across the wireless medium in clear text.
From a security perspective, why is this significant?
  1. A
    The username is needed for Personal Access Credential (PAC) and X.509 certificate validation.
  2. B
    The username is an input to the LEAP challenge/response hash that is exploited, so the username must be known to conduct authentication cracking.
  3. C
    4-Way Handshake nonces are based on the username in WPA and WPA2 authentication.
  4. D
    The username can be looked up in a dictionary file that lists common username/password combinations.

Correct Answer:
B

Question #19
Given: In XYZs small business, two autonomous 802.11ac APs and 12 client devices are in use with WPA2-Personal.
What statement about the WLAN security of this company is true?
  1. A
    Intruders may obtain the passphrase with an offline dictionary attack and gain network access, but will be unable to decrypt the data traffic of other users.
  2. B
    A successful attack against all unicast traffic on the network would require a weak passphrase dictionary attack and the capture of the latest 4-Way Handshake for each client.
  3. C
    An unauthorized wireless client device cannot associate, but can eavesdrop on some data because WPA2-Personal does not encrypt multicast or broadcast traffic.
  4. D
    An unauthorized WLAN user with a protocol analyzer can decode data frames of authorized users if he captures the BSSID, client MAC address, and a users 4-Way Handshake.
  5. E
    Because WPA2-Personal uses Open System authentication followed by a 4-Way Handshake, hijacking attacks are easily performed.

Correct Answer:
B

Question #20
Given: The Aircrack-ng WLAN software tool can capture and transmit modified 802.11 frames over the wireless network. It comes pre-installed on Kali Linux and some other Linux distributions.
What are three uses for such a tool? (Choose 3)
  1. A
    Transmitting a deauthentication frame to disconnect a user from the AP.
  2. B
    Auditing the configuration and functionality of a WIPS by simulating common attack sequences
  3. C
    Probing the RADIUS server and authenticator to expose the RADIUS shared secret
  4. D
    Cracking the authentication or encryption processes implemented poorly in some WLANs

Correct Answer:
ABD

Previous Questions Next Questions

All Pages