Full Access CWNP CWSP-207 Tutorials

Page: 5 / 6

Question 20

What software and hardware tools are used together to hijack a wireless station from the authorized wireless network onto an unauthorized wireless network? (Choose 2)

Options:

RF jamming device and a wireless radio card

A low-gain patch antenna and terminal emulation software

A wireless workgroup bridge and a protocol analyzer

DHCP server software and access point software

MAC spoofing software and MAC DoS software

Question 21

Given: You have a Windows laptop computer with an integrated, dual-band, Wi-Fi compliant adapter. Your laptop computer has protocol analyzer software installed that is capable of capturing and decoding 802.11ac data.

What statement best describes the likely ability to capture 802.11ac frames for security testing purposes?

Options:

All integrated 802.11ac adapters will work with most protocol analyzers for frame capture, including the Radio Tap Header.

Integrated 802.11ac adapters are not typically compatible with protocol analyzers in Windows laptops. It is often best to use a USB adapter or carefully select a laptop with an integrated adapter that will work.

Laptops cannot be used to capture 802.11ac frames because they do not support MU-MIMO.

Only Wireshark can be used to capture 802.11ac frames as no other protocol analyzer has implemented the proper frame decodes.

The only method available to capture 802.11ac frames is to perform a remote capture with a compatible access point.

Question 22

Given: During 802.1X/LEAP authentication, the username is passed across the wireless medium in clear text.

From a security perspective, why is this significant?

Options:

The username is needed for Personal Access Credential (PAC) and X.509 certificate validation.

The username is an input to the LEAP challenge/response hash that is exploited, so the username must be known to conduct authentication cracking.

4-Way Handshake nonces are based on the username in WPA and WPA2 authentication.

The username can be looked up in a dictionary file that lists common username/password combinations.

Question 23

You perform a protocol capture using Wireshark and a compatible 802.11 adapter in Linux. When viewing the capture, you see an auth req frame and an auth rsp frame. Then you see an assoc req frame and an assoc rsp frame. Shortly after, you see DHCP communications and then ISAKMP protocol packets. What security solution is represented?