Which is an advantage of pass-the-hash attacks?

Study for the SANS560 GIAC Penetration Tester (GPEN) Test. Study with flashcards and multiple choice questions, each question has hints and explanations. Get ready for your exam!

Multiple Choice

Which is an advantage of pass-the-hash attacks?

Explanation:
Pass-the-hash attacks exploit the ability to authenticate using the captured hash itself, not the actual plaintext password. Once you have a valid NTLM or Kerberos hash, you can present it to services to gain access, enabling quick lateral movement without ever cracking the password. This is the key advantage: you don’t need to recover or reveal the plaintext password, just reuse the hash. Because authentication is performed with the hash, not the password, you don’t transmit plaintext credentials. And the attack doesn’t require changing passwords to succeed. Those points explain why the option stating it does not require cracking hashes is the best fit.

Pass-the-hash attacks exploit the ability to authenticate using the captured hash itself, not the actual plaintext password. Once you have a valid NTLM or Kerberos hash, you can present it to services to gain access, enabling quick lateral movement without ever cracking the password. This is the key advantage: you don’t need to recover or reveal the plaintext password, just reuse the hash.

Because authentication is performed with the hash, not the password, you don’t transmit plaintext credentials. And the attack doesn’t require changing passwords to succeed. Those points explain why the option stating it does not require cracking hashes is the best fit.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy