Exam SY0-601 topic 1 question 189 discussion

Dictionary attack -> known and common words being used Spraying password -> will try top 3/5 passwords on multiple user accounts Brute Force -> will try any password combination, resulting with a lock out most of the time

Brute Force - locked out account/1 account several password attempts to me points to Brute Force

C Brute Force Brute force works on one account and multiple passwords. Here USER not change, but trying possible combinations, so it is brute force.

A brute force attack is a type of cyberattack in which an attacker attempts to gain unauthorized access to a system or an account by systematically trying all possible combinations of usernames and passwords until the correct one is found. This method is based on the assumption that, given enough time, the attacker will eventually discover the correct credentials.

It should be dictionary attack because as look to the output all passwords are using from a dictionary.

A simple brute-force attack uses automation and scripts to guess passwords. Typical brute-force attacks make a few hundred guesses every second. Simple passwords, such as those lacking a mix of upper- and lowercase letters and those using common expressions like ‘123456’ or ‘password,’ can be cracked in minutes. Look at the time of attacks performed.

Why comptia, why

if it was brute force, shouldn't it be different passwords shown on the SIEM?

Agree with Brute Force

Password spraying is an attack that attempts to access a large number of accounts (usernames) with a few commonly used passwords. Traditional brute-force attacks attempt to gain unauthorized access to a single account by guessing the password.