nerdexam
GIAC

GCIH · Question #554

You are recovering a password. The password is encoded as an MD5 hash with salt. Which attack will have a 100% success rate at recovering the original password, given enough time and computing power?

The correct answer is A. Brute force. Because brute force password attacks test every possible character combination, over a long enough timeline, they will recover all possible passwords. Dictionary and hybrid attacks test only words and variations on words. An MD5 rainbow table lookup is ineffective against a salte

Vulnerability Exploitation & Privilege Escalation

Question

You are recovering a password. The password is encoded as an MD5 hash with salt. Which attack will have a 100% success rate at recovering the original password, given enough time and computing power?

Options

  • ABrute force
  • BHybrid
  • CMD5 Rainbow table
  • DDictionary

How the community answered

(27 responses)
  • A
    78% (21)
  • B
    4% (1)
  • C
    4% (1)
  • D
    15% (4)

Explanation

Because brute force password attacks test every possible character combination, over a long enough timeline, they will recover all possible passwords. Dictionary and hybrid attacks test only words and variations on words. An MD5 rainbow table lookup is ineffective against a salted hash.

Topics

#password cracking#MD5 hash with salt#brute force attack#rainbow tables

Community Discussion

No community discussion yet for this question.

Full GCIH Practice