An attacker is attempting to find the password to a network by inputting common words and phrases in plaintext to the password prompt. Which of the following attack types BEST describes this action?
Password Attacks
For as long as computer systems have existed, password attacks have also
existed. With this type of attack, the attacker seeks to gain access to systems
or files by using the actual password required for that access. There are
many different forms of password attacks, including the following:
Brute-force password attack: In this type of attack, the attacker tries
all possible password combinations until a match is made. For
example, a brute-force attack might start with the letter a and go
through the letter z, and then the attacker might attempt the letters aa
through zz, continuing to try combinations until the password is
determined. Using complicated passwords—with a mixture of upperand
lowercase letters as well as special characters and numbers—can
help prevent brute-force attacks.
Dictionary password attack: In this type of attack, the attacker tries
multiple password guesses. However, a dictionary attack is based on a
dictionary of commonly used words rather than trying all possible
combinations, as in a brute-force attack. Picking a password that is not
a common word helps thwart dictionary attacks.
Dictionary attack and brute-force attack are very similar but in this case, dictionary is the answer because the outlying difference between the two is that brute-force is simply guessing passwords with no basis whereas a dictionary attack is attempting to guess a password from a predetermined set of possible passwords. Another example of a question that differentiates the two is one that asks of a person attempting to guess a password from a list of passwords that the hacker bought from a malicious source. Someone who knows better please correct me if I am wrong.
- A pass-the-hash attack is a type of attack in which an attacker steals a user's password hash and uses it to gain unauthorised access to systems and resources.
- A rainbow table attack is a type of password cracking method that uses pre-computed hashes to quickly crack encrypted passwords without brute-force guessing.
- A brute-force attack is a method of guessing a password by systematically trying every possible combination of characters until the correct one is found.
- A dictionary attack is a method of guessing a password by systematically trying words found in a dictionary or other word list until the correct password is found.
The use of common word and phrase is the keyword for this one. I thought it was Brute force but a more define answer that I saw was D) Dictionary attack.
This section is not available anymore. Please use the main Exam Page.N10-008 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Cas509
Highly Voted 2Â years, 7Â months agoPongsathorn
Highly Voted 2Â years, 9Â months agofritts
Most Recent 5Â months, 3Â weeks agoveli_117
1Â year, 8Â months agoStevenElev11n
1Â year, 9Â months agoUnipod
2Â years, 2Â months agostonegg
2Â years, 6Â months agochanke
2Â years, 7Â months ago[Removed]
2Â years, 7Â months ago[Removed]
2Â years, 7Â months ago