(ISC)2(ISC)2
SSCP · Question #1256
SSCP Question #1256: Real Exam Question with Answer & Explanation
The correct answer is D: SAM. To effectively use the L0phtCrack tool for password cracking on Windows NT, the Security Account Manager (SAM) database must be exported or accessed.
Submitted by ashley.k· Apr 18, 2026Systems and Application Security
Question
In order to use L0pht, the ___________ must be exported from Windows NT.
Options
- ASAMBA
- BLDAP
- CKernel
- DSAM
- EPDC
Explanation
To effectively use the L0phtCrack tool for password cracking on Windows NT, the Security Account Manager (SAM) database must be exported or accessed.
Common mistakes.
- A. SAMBA is a software suite that allows interoperability between Windows and Unix/Linux systems, not a component that needs to be exported for L0phtCrack.
- B. LDAP (Lightweight Directory Access Protocol) is a protocol for accessing directory services, not the database L0phtCrack extracts hashes from.
- C. The Kernel is the core part of the operating system; exporting it makes no sense for password cracking with L0phtCrack.
- E. PDC (Primary Domain Controller) is a role a Windows NT server can play, but the SAM database within that server is the specific target, not the PDC role itself.
Concept tested. L0phtCrack data source (SAM)
Topics
#Password cracking#SAM database#Windows NT security#Security tools
Community Discussion
No community discussion yet for this question.