312-50V10 · Question #671
This kind of password cracking method uses word lists in combination with numbers and special characters:
The correct answer is A. Hybrid. A hybrid password attack combines dictionary word lists with brute-force mutations such as appending numbers and special characters to each word.
Question
This kind of password cracking method uses word lists in combination with numbers and special characters:
Options
- AHybrid
- BLinear
- CSymmetric
- DBrute Force
How the community answered
(21 responses)- A86% (18)
- B5% (1)
- D10% (2)
Why each option
A hybrid password attack combines dictionary word lists with brute-force mutations such as appending numbers and special characters to each word.
A hybrid attack starts with a dictionary or word list and then programmatically appends or prepends numbers, symbols, or character substitutions to each candidate. This targets the common user behavior of taking a simple word and adding complexity (e.g., 'Password1!'). It is more efficient than pure brute force while covering a wider space than a plain dictionary attack.
Linear is not a recognized password cracking methodology in standard security terminology.
Symmetric refers to a type of encryption algorithm, not a password cracking technique.
Brute force systematically tries every possible character combination without using a word list as a starting point, making it slower and not word-list-based by definition.
Concept tested: Hybrid password cracking attack technique
Source: https://owasp.org/www-project-web-security-testing-guide/v42/4-Web_Application_Security_Testing/04-Authentication_Testing/07-Testing_for_Weak_Password_Policy
Topics
Community Discussion
No community discussion yet for this question.