CompTIA
SY0-301 · Question #10
SY0-301 Question #10: Real Exam Question with Answer & Explanation
The correct answer is C: Brute force. Brute force attacks systematically attempt every possible password combination until the correct one is found, making it the appropriate method to recover a forgotten password on a protected file when no other recovery mechanism exists.
Question
Which of the following can be used by a security administrator to successfully recover a user's forgotten password on a password protected file?
Options
- ACognitive password
- BPassword sniffing
- CBrute force
- DSocial engineering
Explanation
Brute force attacks systematically attempt every possible password combination until the correct one is found, making it the appropriate method to recover a forgotten password on a protected file when no other recovery mechanism exists.
Common mistakes.
- A. A cognitive password (security question) is used as an alternative authentication factor during account recovery on online systems; it cannot be applied to recover a locally encrypted or password-protected file.
- B. Password sniffing captures credentials transmitted over a network in cleartext or weakly encrypted form; it cannot recover a password used to protect a local file at rest.
- D. Social engineering manipulates people into divulging credentials or taking actions; it is a human-based attack and is not applicable to technically recovering a password from a protected file.
Concept tested. Brute force password recovery on protected files
Reference. https://owasp.org/www-community/attacks/Brute_force_attack
Community Discussion
No community discussion yet for this question.