Exam PT0-001 topic 1 question 22 discussion

PenTest+ Practice Tests Book - SYBEX D. - In this scenario, the tester is using the Metasploit PSEXEC module. Using Metasploit, a tester can exploit a system and perform a hash dump to extract the systems hashes. The tester can then use the PSEXEC module to pass the hash to another system on the network. The example shows how the SMBPASS option is set and the pass-the-hash attack executed, resulting in access to a remote system within the network. A pass-the-hash attack is an exploit in which a tester takes a hashed user credential and, without cracking it, reuses it to deceive an authentication system into creating a new authenticated session on the same network.

the answer for D1960 question is A. the answer for this is D

looks good to me

It was on the exam

I believe the correct answer is D.

I think pass the hash because we already known the hash and going to compromise another machines.

Another pass-the-hash question you may in your future. I would be interested in any options. I think the correct answer is A. But I am not sure: .... A penetration tester successfully exploits a Windows host and dumps the hashes Which of the following hashes can the penetration tester use to perform a pass-the-hash attack? A. administrator:500:d9cOaa9ec7b349nef012bbc991de07a8:654bdc65adf9814bc6Seabh296044cab B. Administratar:500:aad3k3435b51404ezaad3b435b$1404set31d6cfeed16ae931b73c59d7e0c089c0:dfc312aeed121 C. Administrator:$NTLM$11223344 D. Administrator:$NTLMv2SNTLMV2WORKGROUP$11223344”$67708$0/659A550D5E9D02996DrD95:8/EC105501010000 6000000000ECF6385874CA01133610802D49732DDO00000000200120

D. The answer is in the name, instead of trying to crack the hash ..use the hash as the password

Maybe: A. Credential dump attack ? There as a password hash.