nerdexam
GIAC

GPEN · Question #420

GPEN Question #420: Real Exam Question with Answer & Explanation

The correct answer is B. Applications take advantage of 64-bit CPU processor and multithread the crackingprocess.. Rainbow table tools are distinguished from tools like Cain and John the Ripper by their ability to exploit 64-bit processors and multithreading to accelerate the lookup process.

Question

Which of the following is the feature that separates the use of Rainbow Tables from other applications such as Cain or John the Ripper?

Options

  • ASalts are used to create massive password databases for comparison.
  • BApplications take advantage of 64-bit CPU processor and multithread the crackingprocess.
  • CData Is aligned efficiently in the rainbow tables making the search process quicker
  • DRaw hashed passwords are compared to pre-calculated hash tables.

Explanation

Rainbow table tools are distinguished from tools like Cain and John the Ripper by their ability to exploit 64-bit processors and multithreading to accelerate the lookup process.

Common mistakes.

  • A. Salts are specifically designed to defeat rainbow table attacks by making precomputed tables useless, not to build password databases for comparison.
  • C. Efficient data alignment is an internal storage implementation detail of rainbow tables and does not represent the key differentiating feature compared to tools like Cain or John the Ripper.
  • D. Comparing hashes to precomputed tables is a general description of lookup-based attacks and does not specifically identify the hardware optimization characteristic that separates rainbow table tools from traditional crackers.

Concept tested. Rainbow table hardware-accelerated cracking vs traditional tools

Reference. https://owasp.org/www-community/attacks/Password_Cracking

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full GPEN Practice