Question 1 of 6
What distinguishes a replay attack from an on-path attack?
Question 2 of 6
In a pass-the-hash attack, what does the attacker capture and subsequently reuse?
Question 3 of 6
Which of the following correctly explains why salting (nonce-based authentication) prevents pass-the-hash replay attacks?
Question 4 of 6
What is session hijacking (sidejacking), and why does it succeed even against users who have authenticated with strong passwords and multi-factor authentication?
Question 5 of 6
Which tool was specifically designed to automate session cookie capture and one-click session hijacking against users on the same open Wi-Fi network, and what was its primary historical significance?
Question 6 of 6
What is the most effective defense against both pass-the-hash and session ID replay attacks conducted over a network?
Matching β Replay Attack Concepts
Match each term on the left to its correct description on the right.
1. Replay Attack
2. Pass-the-Hash
3. Session Hijacking
4. Session ID