Exam SY0-501 topic 1 question 498 discussion

ARP spoofing is a type of attack in which a malicious actor sends falsified ARP (Address Resolution Protocol) messages over a local area network. This results in the linking of an attacker's MAC address with the IP address of a legitimate computer or server on the network.

ARP Poisoning (also known as ARP Spoofing) is a type of cyber attack carried out over a Local Area Network (LAN) that involves sending malicious ARP packets to a default gateway on a LAN in order to change the pairings in its IP to MAC address table. Answer: Spoofing

B in my option. don't listen to MelvinJohn. There are others like him. ARP Poisoning (also known as ARP Spoofing) is a type of cyber attack carried out over a Local Area Network (LAN) that involves sending malicious ARP packets to a default gateway on a LAN in order to change the pairings in its IP to MAC address table. References: 1. https://www.radware.com/security/ddos-knowledge-center/ddospedia/arp-poisoning#:~:text=ARP%20Poisoning%20(also%20known%20as,IP%20addresses%20into%20MAC%20addresses. 2. COM501B - The Official CompTIA Security+ Study Guide (SY0-501)

I just gave hasty advice -- sorry. B -- Question specifies ARP not DNS – there’s a difference between ARP cache and DNS cache. Not ( C ) because DNS poisoning goes after the DNS cache, not the ARP cache. But technically “modify the ARP cache” is actually “ARP Poisoning” not “spoofing”. Spoofing doesn’t modify the cache, but is BEST answer here. https://www.ccnahub.com/ip-fundamentals/understanding-web-browser-dns-lookup/

C -- Upon further research: DNS poisoning (also known as DNS spoofing) is a type of attack which uses security gaps in the Domain Name System (DNS) protocol to redirect internet traffic to malicious websites. Not (B) because it only says “spoofing”, not DNS spoofing” , whereas (C) specifically says “DNS poisoning.” https://usa.kaspersky.com/resource-center/definitions/dns

c. because it talks ab the arp "CACHE".