Register
5:00
Stop
CEH - Enumeration
Advanced
1/5
A security incident has occurred at FutureTech Corp where users were complaining about intermittent connectivity issues. Upon investigation, the network security team discovers multiple instances where network traffic was being redirected through an unauthorized device before reaching its intended destination. Packet analysis shows that the IP address of the gateway router (192.168.1.1) has been associated with two different MAC addresses in the ARP tables of various hosts. What is the most likely attack vector being used in this scenario?
a.
The attacker has compromised the DHCP server to assign their machine as the default gateway for new connections
b.
The attacker is using ARP poisoning to associate their MAC address with the gateway's IP address in victims' ARP caches
c.
The attacker has exploited a vulnerability in the router's firmware allowing them to clone the router's MAC address across multiple interfaces
d.
The attacker is performing DNS spoofing to redirect traffic through their machine before forwarding it to legitimate destinations
Advanced