EC-Council
312-50V9 · Question #477
312-50V9 Question #477: Real Exam Question with Answer & Explanation
The correct answer is D: Passwords. John the Ripper is a widely used open-source password auditing tool designed to identify weak passwords through dictionary, brute-force, and rule-based cracking techniques.
Question
John the Ripper is a technical assessment tool used to test the weakness of which of the following?
Options
- AUsernames
- BFile permissions
- CFirewall rulesets
- DPasswords
Explanation
John the Ripper is a widely used open-source password auditing tool designed to identify weak passwords through dictionary, brute-force, and rule-based cracking techniques.
Common mistakes.
- A. John the Ripper targets password hashes, not usernames; usernames are typically stored in plaintext and do not require a cracking tool to retrieve.
- B. File permission weaknesses are assessed using OS-level auditing tools and permission scanners, not password cracking utilities like John the Ripper.
- C. Firewall ruleset analysis requires dedicated firewall auditing or policy review tools; John the Ripper has no capability to evaluate or test firewall configurations.
Concept tested. Password cracking tools - John the Ripper usage
Reference. https://www.openwall.com/john/
Community Discussion
No community discussion yet for this question.