A company’s user lockout policy is enabled after five unsuccessful login attempts. The help desk notices a user is repeatedly locked out over the course of a workweek. Upon contacting the user, the help desk discovers the user is on vacation and does not have network access.
Which of the following types of attacks are MOST likely occurring? (Select two.)
A.
Replay
B.
Rainbow tables
C.
Brute force
D.
Pass the hash
E.
Dictionary
I believe the correct answers are C & E. Both Brute Force and Dictionary attacks require attacker to attempt login and are subject to account lockouts whereas Pass the Hash & Rainbow Tables bypass normal clear text login procedures and work directly with the hashed credentials. Replay has nothing to do with account lockouts.
20
0
C & E. Certainly not Pass the Hash.
10
0
C and D
0
17