During an internal assessment you connect to a campus access switch and launch the macof module in Yersinia, blasting the switch with 150,000 forged source MAC addresses per minute. From a sniffing standpoint, what is the attacker's primary goal in performing this MAC flooding attack?
Force the switch to drop to half-duplex operation, generating late collisions that reveal Ethernet payloads.
Exhaust the switch's CAM table so it floods all unknown unicast frames to every port, exposing other users' traffic for capture.
Overwrite the default gateway's MAC entry in hosts' ARP caches to redirect traffic through the attacker's machine.
Inject spoofed spanning-tree BPDUs to become the root bridge and channel VLAN traffic through the attacker's port.
A MAC flooding (CAM table overflow) attack deliberately exhausts the switch's Content-Addressable Memory so it can no longer maintain accurate port-to-MAC associations. When the CAM table is full, the switch fails open and begins flooding subsequent frames out every port, behaving like a hub. This exposes traffic from other hosts to any system in the same VLAN, enabling the attacker to capture packets with a sniffer. Overwriting ARP cache entries, forcing half-duplex collisions, or manipulating spanning-tree roles are different Layer 2 attacks with distinct objectives and do not rely on filling the CAM table to enable promiscuous sniffing.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is a CAM table in a network switch?
Open an interactive chat with Bash
How does MAC flooding affect a switch's behavior?
Open an interactive chat with Bash
What tools can be used to perform sniffing after a MAC flooding attack?
Open an interactive chat with Bash
What is a CAM table and why is it important?
Open an interactive chat with Bash
How does a MAC flooding attack work?
Open an interactive chat with Bash
What tools are commonly used for MAC flooding attacks?
Open an interactive chat with Bash
Certified Ethical Hacker (CEH)
Network and Perimeter Hacking
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99
$19.99/mo
Billed monthly, Cancel any time.
3 Month Pass
$44.99
$14.99/mo
One time purchase of $44.99, Does not auto-renew.
MOST POPULAR
Annual Pass
$119.99
$9.99/mo
One time purchase of $119.99, Does not auto-renew.
BEST DEAL
Lifetime Pass
$189.99
One time purchase, Good for life.
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .