CWSP-205 Exam Details

  • Exam Code
    :CWSP-205
  • Exam Name
    :Certified Wireless Security Professional
  • Certification
    :CWNP Certifications
  • Vendor
    :CWNP
  • Total Questions
    :119 Q&As
  • Last Updated
    :Jul 12, 2026

CWNP CWSP-205 Online Questions & Answers

  • Question 1:

    Given: WLAN attacks are typically conducted by hackers to exploit a specific vulnerability within a network.

    What statement correctly pairs the type of WLAN attack with the exploited vulnerability? (Choose 3)

    A. Management interface exploit attacks are attacks that use social engineering to gain credentials from managers.
    B. Zero-day attacks are always authentication or encryption cracking attacks.
    C. RF DoS attacks prevent successful wireless communication on a specific frequency or frequency range.
    D. Hijacking attacks interrupt a user's legitimate connection and introduce a new connection with an evil twin AP.
    E. Social engineering attacks are performed to collect sensitive information from unsuspecting users
    F. Association flood attacks are Layer 3 DoS attacks performed against authenticated client stations

  • Question 2:

    ABC Company uses the wireless network for highly sensitive network traffic. For that reason, they intend to protect their network in all possible ways. They are continually researching new network threats and new preventative measures. They are interested in the security benefits of 802.11w, but would like to know its limitations.

    What types of wireless attacks are protected by 802.11w? (Choose 2)

    A. RF DoS attacks
    B. Layer 2 Disassociation attacks
    C. Robust management frame replay attacks
    D. Social engineering attacks

  • Question 3:

    What type of WLAN attack is prevented with the use of a per-MPDU TKIP sequence counter (TSC)?

    A. Weak-IV
    B. Forgery
    C. Replay
    D. Bit-flipping
    E. Session hijacking

  • Question 4:

    What attack cannot be detected by a Wireless Intrusion Prevention System (WIPS)?

    A. MAC Spoofing
    B. Eavesdropping
    C. Hot-spotter
    D. Soft AP
    E. Deauthentication flood
    F. EAP flood

  • Question 5:

    Given: You are the WLAN administrator in your organization and you are required to monitor the network and ensure all active WLANs are providing RSNs. You have a laptop protocol analyzer configured.

    In what frame could you see the existence or non-existence of proper RSN configuration parameters for each BSS through the RSN IE?

    A. Probe request
    B. Beacon
    C. RTS
    D. CTS
    E. Data frames

  • Question 6:

    Given: Your organization is using EAP as an authentication framework with a specific type that meets the requirements of your corporate policies.

    Which one of the following statements is true related to this implementation?

    A. The client will be the authenticator in this scenario.
    B. The client STAs must use a different, but complementary, EAP type than the AP STAs.
    C. The client STAs may communicate over the uncontrolled port in order to authenticate as soon as Open System authentication completes.
    D. The client STAs may communicate over the controlled port in order to authenticate as soon as the Open System authentication completes.

  • Question 7:

    When TKIP is selected as the pairwise cipher suite, what frame types may be protected with data confidentiality? (Choose 2)

    A. Robust broadcast management
    B. Robust unicast management
    C. Control
    D. Data
    E. ACK
    F. QoS Data

  • Question 8:

    What security vulnerabilities may result from a lack of staging, change management, and installation procedures for WLAN infrastructure equipment? (Choose 2)

    A. The WLAN system may be open to RF Denial-of-Service attacks
    B. WIPS may not classify authorized, rogue, and neighbor APs accurately
    C. Authentication cracking of 64-bit Hex WPA-Personal PSK
    D. Management interface exploits due to the use of default usernames and passwords for AP management
    E. AES-CCMP encryption keys may be decrypted

  • Question 9:

    Given: Many corporations configure guest VLANs on their WLAN controllers that allow visitors to have Internet access only. The guest traffic is tunneled to the DMZ to prevent some security risks.

    In this deployment, what risks are still associated with implementing the guest VLAN without any advanced traffic monitoring or filtering features enabled? (Choose 2)

    A. Intruders can send spam to the Internet through the guest VLAN.
    B. Peer-to-peer attacks can still be conducted between guest users unless application-layer monitoring and filtering are implemented.
    C. Unauthorized users can perform Internet-based network attacks through the WLAN.
    D. Guest users can reconfigure AP radios servicing the guest VLAN unless unsecure network management protocols (e.g. Telnet, HTTP) are blocked.
    E. Once guest users are associated to the WLAN, they can capture 802.11 frames from the corporate VLANs.

  • Question 10:

    In an effort to optimize WLAN performance, ABC Company has upgraded their WLAN infrastructure from 802.11a/g to 802.11n. 802.11a/g clients are still supported and are used throughout ABC's facility. ABC has always been highly security conscious, but due to budget limitations, they have not yet updated their overlay WIPS solution to 802.11n or 802.11ac.

    Given ABC's deployment strategy, what security risks would not be detected by the 802.11a/g WIPS?

    A. Hijacking attack performed by using a rogue 802.11n AP against an 802.11a client
    B. Rogue AP operating in Greenfield 40 MHz-only mode
    C. 802.11a STA performing a deauthentication attack against 802.11n APs
    D. 802.11n client spoofing the MAC address of an authorized 802.11n client

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CWNP exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your CWSP-205 exam preparations and CWNP certification application, do not hesitate to visit our Vcedump.com to find your solutions here.