Exam PT0-002 topic 1 question 413 discussion

Actual exam question from CompTIA's PT0-002

Question #: 413
Topic #: 1

A penetration tester would like to crack a hash using a list of hashes and a predefined set of rules. The tester runs the following command:

hashcat.exe -a 0 .\hash.txt .\rockyou.txt -r .\rules\replace.rule

Which of the following is the penetration tester using to crack the hash?

A. Hybrid attack
B. Dictionary
C. Rainbow table
D. Brute-force method

Show Suggested Answer

Suggested Answer: B 🗳️

by zemijan at Dec. 21, 2024, 12:56 p.m.

Comments

Submit Cancel

Alex818119

6 months ago

Selected Answer: B

Bing AI says the answer is B: In this scenario, the penetration tester is using a combination of a wordlist and predefined rules to crack the hash. The command provided uses a dictionary (wordlist) attack along with specific rules for modifying the words in the list. The best answer here is: B. Dictionary By using -a 0, the tester specifies a straight dictionary attack mode. The rockyou.txt file is the wordlist, and the replace.rule file contains the rules for modifying the words in the dictionary during the attack.

upvoted 3 times

...

Learner213

6 months ago

Selected Answer: A

Test answer is Hybrid attack.

upvoted 1 times

study_study

3 months, 1 week ago

why? how do you know?

upvoted 1 times

...

zemijan

6 months, 3 weeks ago

Selected Answer: B

dictionary attack: hashcat.exe: Runs the Hashcat tool. -a 0: Specifies a dictionary attack mode (standard dictionary-based cracking). .\hash.txt: File containing the list of hashes to crack. .\rockyou.txt: A wordlist (dictionary) used to try common passwords. -r .\rules\replace.rule: Applies a set of transformation rules (e.g., replacing characters, appending numbers, etc.) to the dictionary entries to increase the chance of matching the hash.

upvoted 2 times

...