312-50V10 · Question #649
Eve is spending her day scanning the library computers. She notices that Alice is using a computer whose port 445 is active and listening. Eve uses the ENUM tool to enumerate Alice machine. From the c
The correct answer is C. Eve is trying to carry out a password crack for user Administrator. Eve is using the ENUM tool against port 445 (SMB) to attempt a password crack specifically targeting the Administrator account on Alice's Windows machine.
Question
Eve is spending her day scanning the library computers. She notices that Alice is using a computer whose port 445 is active and listening. Eve uses the ENUM tool to enumerate Alice machine. From the command prompt, she types the following command. What is Eve trying to do?
Options
- AEve is trying to connect as an user with Administrator privileges
- BEve is trying to enumerate all users with Administrative privileges
- CEve is trying to carry out a password crack for user Administrator
- DEve is trying to escalate privilege of the null user to that of Administrator
How the community answered
(40 responses)- A8% (3)
- B13% (5)
- C78% (31)
- D3% (1)
Why each option
Eve is using the ENUM tool against port 445 (SMB) to attempt a password crack specifically targeting the Administrator account on Alice's Windows machine.
Connecting as an Administrator requires already possessing valid credentials; Eve is using ENUM to discover or crack the password, meaning she does not yet have those credentials.
Enumerating all users with administrative privileges would produce a list of accounts, not perform targeted credential testing against a single named account.
Port 445 hosts the SMB protocol on Windows systems, which supports remote authentication and enumeration. The ENUM tool can be directed to repeatedly test credentials against a specific account over SMB, and the command Eve typed targets the Administrator account to crack its password through repeated authentication attempts against the SMB service.
Null session privilege escalation involves connecting anonymously over SMB to extract information, which is a different technique from actively cracking a specific named account's password.
Concept tested: Windows SMB enumeration and Administrator password cracking
Source: https://learn.microsoft.com/en-us/windows-server/storage/file-server/troubleshoot/detect-enable-and-disable-smbv1-v2-v3
Topics
Community Discussion
No community discussion yet for this question.