Which attack floods a network by sending ICMP echo requests to a broadcast address?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $9.99Unlock all

Enhance your knowledge as a Computer Hacking Forensic Investigator with the CHFI v11 Test. Use flashcards and multiple-choice questions, complete with hints and detailed explanations, to prepare effectively and ace your exam!

Multiple Choice

Which attack floods a network by sending ICMP echo requests to a broadcast address?

Explanation:
This question tests understanding of how a broadcast-based amplification flood works using ICMP. In a Smurf attack, the attacker sends ICMP Echo Request packets to the broadcast address of a network, with the source IP spoofed to the victim. Every host on that network that receives the request replies to the spoofed address, causing a flood of ICMP Echo Replies directed at the victim. The result is a large amount of traffic aimed at the victim, overwhelming their network connection. This attack relies on directed broadcasts being enabled on the network, which modern networks often disable to prevent exactly this kind of abuse. Defenses include turning off directed broadcasts and applying proper ingress filtering to block spoofed source IPs. Fraggle is a UDP-based flood using echo/chargen services to a broadcast address, not ICMP. SYN flood targets TCP handshakes, and Teardrop exploits fragment handling, not ICMP broadcast amplification.

This question tests understanding of how a broadcast-based amplification flood works using ICMP. In a Smurf attack, the attacker sends ICMP Echo Request packets to the broadcast address of a network, with the source IP spoofed to the victim. Every host on that network that receives the request replies to the spoofed address, causing a flood of ICMP Echo Replies directed at the victim. The result is a large amount of traffic aimed at the victim, overwhelming their network connection.

This attack relies on directed broadcasts being enabled on the network, which modern networks often disable to prevent exactly this kind of abuse. Defenses include turning off directed broadcasts and applying proper ingress filtering to block spoofed source IPs.

Fraggle is a UDP-based flood using echo/chargen services to a broadcast address, not ICMP. SYN flood targets TCP handshakes, and Teardrop exploits fragment handling, not ICMP broadcast amplification.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy