nerdexam
ExamsPT0-001Questions#6
CompTIA

PT0-001 · Question #6

PT0-001 Question #6: Real Exam Question with Answer & Explanation

The correct answer is A: Hydra. Hydra is an online network login brute-forcing tool that targets live authentication services, distinguishing it from offline hash-cracking utilities.

Attacks and exploits

Question

Which of the following tools is used to perform a credential brute force attack?

Options

  • AHydra
  • BJohn the Ripper
  • CHashcat
  • DPeach

Explanation

Hydra is an online network login brute-forcing tool that targets live authentication services, distinguishing it from offline hash-cracking utilities.

Common mistakes.

  • B. John the Ripper is an offline password cracking tool that operates against captured password hashes, not against live authentication services.
  • C. Hashcat is a GPU-accelerated offline hash cracking tool used to recover plaintext passwords from captured hashes rather than to attack live login services.
  • D. Peach is a fuzzing framework used to discover software vulnerabilities by sending malformed or unexpected input to applications, not to perform credential brute force attacks.

Concept tested. Online credential brute force tool identification

Reference. https://attack.mitre.org/techniques/T1110/001/

Topics

#credential brute force#Hydra#password attacks#authentication attacks

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full PT0-001 Practice