Multiple Choice
A security consultant was hired to audit a company's password are account policy. The company implements the following controls: Minimum password length: 16 Maximum password age: 0 Minimum password age: 0 Password complexity: disabled Store passwords in plain text: disabled Failed attempts lockout: 3 Lockout timeout: 1 hour The password database uses salted hashes and PBKDF2. Which of the following is MOST likely to yield the greatest number of plain text passwords in the shortest amount of time?
A) Offline hybrid dictionary attack
B) Offline brute-force attack
C) Online hybrid dictionary password spraying attack
D) Rainbow table attack
E) Online brute-force attack
F) Pass-the-hash attack
Correct Answer:
Verified
Correct Answer:
Verified
Q65: A security manager needed to protect a
Q66: An engineer is evaluating the control profile
Q67: Designing a system in which only information
Q68: Which of the following attacks can be
Q69: When reviewing KRIs of the email security
Q71: Following a recent and very large corporate
Q72: The Chief Information Security Officer (CISO) for
Q73: An internal staff member logs into an
Q74: A company has adopted and established a
Q75: A security consultant is attempting to discover