312-50V11 · Question #169
What attack is used to crack passwords by using a precomputed table of hashed passwords?
The correct answer is B. Rainbow Table Attack. A rainbow table attack uses large precomputed tables of plaintext-to-hash mappings to quickly look up and reverse password hashes without performing live computation.
Question
What attack is used to crack passwords by using a precomputed table of hashed passwords?
Options
- ABrute Force Attack
- BRainbow Table Attack
- CDictionary Attack
- DHybrid Attack
How the community answered
(14 responses)- A7% (1)
- B86% (12)
- C7% (1)
Why each option
A rainbow table attack uses large precomputed tables of plaintext-to-hash mappings to quickly look up and reverse password hashes without performing live computation.
A brute force attack systematically computes hashes for every possible character combination at runtime, with no precomputed table involved.
Rainbow table attacks work by precomputing chains of hash values and storing them in a lookup table, trading disk space for speed when cracking captured password hashes. When a hash is obtained, the attacker simply looks it up in the table rather than computing hashes on the fly. This is far faster than brute force and more comprehensive than a dictionary attack for unsalted hashes.
A dictionary attack hashes words from a wordlist at runtime and compares them to the target hash, rather than consulting a precomputed lookup table.
A hybrid attack combines dictionary words with brute force character mutations at runtime, still computing hashes live rather than referencing precomputed data.
Concept tested: Rainbow table precomputed hash cracking
Source: https://owasp.org/www-community/attacks/Password_Cracking
Topics
Community Discussion
No community discussion yet for this question.