CompTIA
PT0-001 · Question #116
A tester has determined that null sessions are enabled on a domain controller. Which of the following attacks can be performed to leverage this vulnerability?
Sign in or unlock PT0-001 to reveal the answer and full explanation for question #116. The question stem and answer options stay visible for context.
Reconnaissance and enumeration
Question
A tester has determined that null sessions are enabled on a domain controller. Which of the following attacks can be performed to leverage this vulnerability?
Options
- ARID cycling to enumerate users and groups
- BPass the hash to relay credentials
- CPassword brute forcing to log into the host
- DSession hijacking to impersonate a system account
Unlock PT0-001 to see the answer
You've previewed enough free PT0-001 questions. Unlock PT0-001 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.
Topics
#null sessions#RID cycling#user enumeration#domain controller