Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.
Mail Us[email protected]
Menu
Eccouncil Discussions
exam questions

Exam 312-50v12 All Questions

View all questions & answers for the 312-50v12 exam
Go to Exam

Exam 312-50v12 topic 1 question 208 discussion

Actual exam question from ECCouncil's 312-50v12
Question #: 208
Topic #: 1
[All 312-50v12 Questions]

As a certified ethical hacker, you are performing a system hacking process for a company that is suspicious about its security system. You found that the company’s passwords are all known words, but not in the dictionary. You know that one employee always changes the password by just adding some numbers to the old password. Which attack is most likely to succeed in this scenario?

  • A. Brute-Force Attack
  • B. Password Spraying Attack
  • C. Hybrid Attack
  • D. Rule-based Attack
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by DarioReymag at Feb. 6, 2024, 10:38 p.m.

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Submit Cancel
Binx
3 months, 2 weeks ago
if the password is explicitly stated as not being in the dictionary, a standard hybrid attack might not be as effective, because it relies on a combination of dictionary words and brute-force techniques. Given this scenario, the most appropriate answer would likely be: D. Rule-based Attack
upvoted 1 times
...
7d8c2c7
3 months, 2 weeks ago
C. Hybrid Attack CEH v12 Page 604 ybrid Attack This type of attack depends on the dictionary attack. Often, people change their passwords merely by adding some numbers to their old passwords. In this case, the program would add some numbers and symbols to the words from the dictionary to try to crack the password. For example, if the old password is “system,” then there is a chance that the person will change it to “system1” or “system2.”
upvoted 1 times
...
GK2205
4 months ago
Selected Answer: D
Attackers use rule-based attacks when they have some knowledge of the passwords and see evidence of simple salts and peppers like "123" at the end of the password. This question is garbage in terms of it's wording, but does combine the two fundamental concepts of rule-based.
upvoted 1 times
...
g_man_rap
6 months, 4 weeks ago
D. Rule-based Attack Rule-based attacks are a sophisticated form of brute-force/dictionary attacks where the attacker defines complex rules based on typical user behavior of password creation (like replacing 'o' with '0', adding years at the end, etc.). This can be highly effective if you understand the common modifications users make to base words in their passwords.
upvoted 1 times
...
qtygbapjpesdayazko
8 months, 1 week ago
Selected Answer: C
C. Hybrid Attack Key word Often, people change their passwords merely by adding some numbers to their old passwords.
upvoted 1 times
Lalo
8 months ago
answer dddddddddddddddddddddddd A hybrid attack combines elements of a dictionary attack with specific rules, such as adding numbers or symbols to the ends of dictionary words. In theory, this type of attack could fit well with the pattern observed in this employee's password changes, since it is based on predefined rules. However, the reason answer C is not selected as the most likely option in this scenario is because, given the information provided, there is no mention of employees using dictionary words as the basis for their passwords. Instead, passwords are stated to be known words with the addition of numbers.
upvoted 1 times
...
Lalo
8 months ago
remember ...company's passwords are all known words, BUT NOT in the dictionary...
upvoted 1 times
...
...
Labas01
8 months, 2 weeks ago
Selected Answer: D
This is a more powerful attack than disctionary and brute-force attacks because the cracker knows the password type." (M06 P604)
upvoted 1 times
...
dobarb
8 months, 2 weeks ago
Is C. Hybrid attack, as the first comment says, at page 604 of CEH there is clearly written this attack works when people changes the password by just adding some numbers to the old password.
upvoted 2 times
...
qtygbapjpesdayazko
8 months, 3 weeks ago
Selected Answer: C
D. Rule-based Attack
upvoted 1 times
qtygbapjpesdayazko
8 months, 1 week ago
well the correct is in fact C. Hybrid Attack
upvoted 1 times
...
...
athicalacker
9 months ago
Selected Answer: D
The question mentions the words are not in the dictionary. So it can't be hybrid since it utilizes dictionary of known words.
upvoted 2 times
...
LeongCC
9 months ago
Selected Answer: C
C: Hybrid Attack
upvoted 1 times
...
sosindi
9 months, 1 week ago
Selected Answer: C
Hybrid Attack
upvoted 1 times
...
insaniunt
9 months, 1 week ago
Selected Answer: C
Hybrid Attack: This type of attack depends on the dictionary attack. Often, people change their passwords merely by adding some numbers to their old passwords. In this case, the program would add some numbers and symbols to the words from the dictionary to try to crack the password. For example, if the old password is “system,” then there is a chance that the person will change it to “system1” or “system2
upvoted 3 times
qtygbapjpesdayazko
8 months, 1 week ago
This is the way
upvoted 1 times
...
...
Unr34l
9 months, 1 week ago
C. Hybrid Attack A hybrid attack combines elements of both dictionary attacks (known words) and brute-force attacks (trying all possible combinations, including modifications like adding numbers). In this case, the attacker leverages the knowledge that the passwords are known words but also incorporates variations by adding numbers. Hybrid attacks are effective in situations where there are patterns or rules applied to password creation, as is the case in the described scenario.
upvoted 2 times
...
JustAName
9 months, 1 week ago
Selected Answer: D
I think answer is D, because it specify "known words, but NOT dictionary". Hybrid attack combined with known words from dictionary, so rule-based should be a more accurate answer.
upvoted 3 times
athicalacker
9 months ago
I agree with this.
upvoted 1 times
...
qtygbapjpesdayazko
8 months, 1 week ago
This is the way
upvoted 1 times
qtygbapjpesdayazko
8 months, 1 week ago
well the correct is in fact C. Hybrid Attack
upvoted 1 times
...
...
...
cloudgangster
9 months, 2 weeks ago
Selected Answer: C
C check pg 604 CEH V12
upvoted 3 times
...

Get IT Certification

Unlock free, top-quality video courses on ExamTopics with a simple registration. Elevate your learning journey with our expertly curated content. Register now to access a diverse range of educational resources designed for your success. Start learning today with ExamTopics!

Start Learning for free
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel