nerdexam
ExamsGCIHQuestions#675
GIAC

GCIH · Question #675

GCIH Question #675: Real Exam Question with Answer & Explanation

The correct answer is B: Crack six digit LANMAN passwords. This hashcat command performs an incremental brute-force mask attack against LANMAN hashes, targeting passwords up to six characters using uppercase letters, digits, and special characters.

Vulnerability Exploitation & Privilege Escalation

Question

What is the outcome of the command below? hashcat -m 3000 -a 3 ntds.dat --potfile-path ntds.potfile -1 ?u?d?s --increment ?1?1?1?1?1?1

Options

  • AAdd new users from a potfile to a Windows Domain Controller
  • BCrack six digit LANMAN passwords
  • CRemove the encryption from the ntds.dat file
  • DCreate a dictionary of 3000 usernames

Explanation

This hashcat command performs an incremental brute-force mask attack against LANMAN hashes, targeting passwords up to six characters using uppercase letters, digits, and special characters.

Common mistakes.

  • A. Hashcat is an offline password cracking tool that operates on extracted hash files and has no capability to add, modify, or interact with user accounts on a Windows Domain Controller.
  • C. Hashcat does not decrypt or remove encryption from database files - it performs offline hash cracking by comparing candidate hashes against extracted hash values already present in the target file.
  • D. The -m 3000 parameter specifies the hash algorithm type to attack rather than a count of usernames, and hashcat generates password candidates to recover plaintext credentials rather than building username lists.

Concept tested. Hashcat LANMAN hash cracking with mask attack

Reference. https://hashcat.net/wiki/doku.php?id=hashcat

Topics

#hashcat#LANMAN hash cracking#brute force attack#mask attack

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full GCIH Practice