Exam SY0-501 topic 1 question 59 discussion

Actual exam question from CompTIA's SY0-501

Question #: 59
Topic #: 1

A company's user lockout policy is enabled after five unsuccessful login attempts. The help desk notices a user is repeatedly locked out over the course of a workweek. Upon contacting the user, the help desk discovers the user is on vacation and does not have network access. Which of the following types of attacks are MOST likely occurring? (Select two.)

A. Replay
B. Rainbow tables
C. Brute force
D. Pass the hash
E. Dictionary

Show Suggested Answer

Suggested Answer: CE 🗳️

by Elb at Feb. 4, 2020, 2:36 p.m.

Comments

Submit Cancel

renegade_xt

Highly Voted 4 years, 11 months ago

Both Brute Force and Dictionary attacks require attacker to attempt login and are subject to account lockouts whereas Pass the Hash & Rainbow Tables bypass normal clear text login procedures and work directly with the hashed credentials. Replay has nothing to do with account lockouts.

upvoted 11 times

...

Elb

Highly Voted 5 years, 2 months ago

C and E. A dictionary attack is a form of brute force attack.

upvoted 5 times

...

Texrax

Most Recent 3 years, 11 months ago

Isn't a rainbow attack also bruteforce attack? Rainbow tables are just hashes of dictionary tables right

upvoted 1 times

...

kdce

4 years, 10 months ago

C/E - Agree trial and error (BF and Dictionary

upvoted 2 times

...

oset1

5 years, 1 month ago

it's brute and dictionary