Home > CompTIA PenTest+ Certification > Quizzes > CompTIA PenTest+ Certification Exam: Wireless and RF Attacks
CompTIA PenTest+ Certification Exam: Wireless and RF Attacks
Fast practice, instant feedback. Timer auto-submits when time’s up.
Avg score: 72% Most missed: “During a pentest, your team identifies an access point that is broadcasting the …”
CompTIA PenTest+ Certification Exam: Wireless and RF Attacks
Time left 00:00
10 Questions

1. The evil twin access point is a type of attack used to duplicate the existence of a legitimate access point in order to entice victims to connect for the purpose of targeting end-user devices or communications. Another way to imitate all possible access points from client beacon requests is called what?
2. With WPA, the wireless client and the access point both know the preshared key in order to join the network. During the authorization process, each device will use the PSK to generate a pairwise master key (PMK) in order to derive a __________, which is used to encrypt packets sent to the receiving host. What is this type of key called?
3. PBKDF2 is used to calculate the PMK using the following values, except for which one?
4. During a pentest, your team identifies an access point that is broadcasting the SSID value and is protected with only WEP encryption. Your team attempts to use aireplay-ng to replay an injected ARP packet over the network; however, the tool has not captured any ARP replies over the network. This is likely due to the fact that no clients are talking over the network. In order to speed up the cracking process, what could you recommend your team to do? (Select the best answer.)
5. With WPA, the wireless client and the access point both know the preshared key in order to join the network. During the authorization process, each device will use the PSK to generate a pairwise master key (PMK) in order to derive a __________, which is used to encrypt packets sent to the receiving host. What is this type of key called?
6. CRC-32 is an algorithm used to verify the integrity of network packets for WEP and is also found in different applications to detect changes in hardware. CRC-32 is based on the original cyclic redundancy check and is not recommended for verifying the integrity of modern-day technology due to the fact that _____________.
7. Which of the following are prone to a cloning attack?
8. WEP uses an encryption algorithm called RC4, which was developed by Ronald Rivest. RC4 is a ________ cipher, which is a symmetric key cipher used to expand a short key into an infinite pseudo-random keystream.
9. In order to crack the WPA or WPA2 PSK, you will need to capture the four-way handshake. During a pentest, your team identifies multiple clients on the target network. What is the best way to capture the handshake?
10. All of the following are layers in the Bluetooth protocol stack except for which one?