nerdexam
ExamsGCIHQuestions#797
GIAC

GCIH · Question #797

GCIH Question #797: Real Exam Question with Answer & Explanation

The correct answer is A: Credential Stuffing. Credential stuffing is the specific attack technique that uses stolen username and password pairs from prior data breach dumps to attempt unauthorized access across multiple services.

Vulnerability Exploitation & Privilege Escalation

Question

What password attack uses a stolen password breach list?

Options

  • ACredential Stuffing
  • BPass-the-Hash
  • CDictionary Attack
  • DMan-in-the-Middle

Explanation

Credential stuffing is the specific attack technique that uses stolen username and password pairs from prior data breach dumps to attempt unauthorized access across multiple services.

Common mistakes.

  • B. Pass-the-Hash captures NTLM hash values from memory or the SAM database and replays the hash directly for authentication, rather than using plaintext passwords from a breach list.
  • C. A dictionary attack generates guesses from a wordlist of common passwords and phrases rather than using actual stolen credential pairs from a confirmed breach.
  • D. A Man-in-the-Middle attack intercepts live communications between two parties and does not involve replaying or testing stolen password lists against accounts.

Concept tested. Credential stuffing attack using stolen breach data

Reference. https://owasp.org/www-community/attacks/Credential_stuffing

Topics

#credential stuffing#password attacks#breach lists#account takeover

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full GCIH Practice