Which of the following describes an 'offline dictionary attack' against passwords?Group of answer choicesThe attacker targets a specific account and submits password guesses until the correct password is discoveredThe attacker waits until a logged-in workstation is unattended.The attacker compares the password hashes against hashes of commonly used passwords.The attacker attempts to gain knowledge about the account holder and system password policies and uses that knowledge to guess the password
Question
Which of the following describes an 'offline dictionary attack' against passwords?Group of answer choicesThe attacker targets a specific account and submits password guesses until the correct password is discoveredThe attacker waits until a logged-in workstation is unattended.The attacker compares the password hashes against hashes of commonly used passwords.The attacker attempts to gain knowledge about the account holder and system password policies and uses that knowledge to guess the password
Solution 1
An 'offline dictionary attack' against passwords
Solution 2
An 'offline dictionary attack' against passwords is described as: The attacker compares the password hashes against hashes of commonly used passwords.
In this type of attack, the attacker has somehow obtained the file where the hashed or encrypted versions of all the users' passwords are stored. They then use a precomputed dictionary where each word has a hash counterpart. The attacker compares these precomputed hashes with the ones in the stolen passwords file. If a match is found, the password has been cracked. This is why it's called a 'dictionary' attack - the attacker is essentially comparing the hashed passwords against a 'dictionary' of hashed common words or passwords.
Similar Questions
What variation of a dictionary attack involves a dictionary attack combined with a brute force attack, and will slightly alter dictionary words by adding numbers to the end of the password, spelling words backward, slightly misspelling words, or including special characters?Group of answer choicesbrute forcehash replaynetwork replayhybrid
Which of the following password attacks involves testing a list of known passwords against a user's password?
An attacker uses software that continuously tries different combinations of characters to gain access to something password protected. What kind of attack is this?A baiting attackA brute-force attackA POD (Ping of Death) attackA dictionary attack
Question 11Which type of cryptographic attack is characterized by comparing a captured hashed password against a table of many millions of previously hashed words or strings?1 pointKnown PlaintextBrute forceSocial EngineeringKnown CiphertextRainbow tables
A network administrator is conducting a training session to office staff on how to create a strong and effective password. Which password would most likely take the longest for a malicious user to guess or break?Question 9Select one:mk$$cittykat104#10charactersdrninjaphdsuper3secret2password1
Upgrade your grade with Knowee
Get personalized homework help. Review tough concepts in more detail, or go deeper into your topic by exploring other relevant questions.