EC-Council
412-79V10 · Question #30
412-79V10 Question #30: Real Exam Question with Answer & Explanation
Sign in or unlock 412-79V10 to reveal the answer and full explanation for question #30. The question stem and answer options stay visible for context.
Question
Peter, a freelance Security Auditor and Penetration Tester, was working on a pen testing assignment for Xsecurity. George is an ESCA certified professional and was following the LPT methodology in performing a comprehensive security assessment of the company. After the initial reconnaissance, scanning and enumeration of the target, he targeted a Windows machine that had the following information stored on it: the retc/passwd file and the retc/shadow file. Peter discovered that the retc/passwd file contained multiple usernames but one of the passwords was stored as a single "*" character. What should George perform to retrieve the actual passwords?
Options
- AGeorge will perform sniffing to capture the actual passwords
- BGeorge will perform replay attack to collect the actual passwords
- CGeorge will perform an exchange to retrieve hash look-up in shadow file
- DGeorge will perform a password attack using the pre-computed hashes also known as a rainbow attack
Unlock 412-79V10 to see the answer
You've previewed enough free 412-79V10 questions. Unlock 412-79V10 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.