CompTIA
CAS-003 · Question #573
CAS-003 Question #573: Real Exam Question with Answer & Explanation
Sign in or unlock CAS-003 to reveal the answer and full explanation for question #573. The question stem and answer options stay visible for context.
Question
A security consultant was hired to audit a company's password are account policy. The company implements the following controls: - Minimum password length: 16 - Maximum password age: 0 - Minimum password age: 0 - Password complexity: disabled - Store passwords in plain text: disabled - Failed attempts lockout: 3 - Lockout timeout: 1 hour The password database uses salted hashes and PBKDF2. Which of the following is MOST likely to yield the greatest number of plain text passwords in the shortest amount of time?
Options
- AOffline hybrid dictionary attack
- BOffline brute-force attack
- COnline hybrid dictionary password spraying attack
- DRainbow table attack
- EOnline brute-force attack
- FPass-the-hash attack
Unlock CAS-003 to see the answer
You've previewed enough free CAS-003 questions. Unlock CAS-003 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.