CompTIA PenTest+ (PT0-002) — Question 383

A penetration tester has found indicators that a privileged user's password might be the same on 30 different Linux systems. Which of the following tools can help the tester identify the number of systems on which the password can be used?

Answer options

• A. Hydra
• B. John the Ripper
• C. Cain and Abel
• D. Medusa

Correct answer: A

Explanation

Hydra is a powerful tool specifically designed for performing brute-force attacks on various services, making it suitable for testing the same password across multiple systems. John the Ripper is primarily focused on cracking password hashes rather than directly testing network services. Cain and Abel is more of a password recovery tool and is less effective in this scenario, while Medusa is a parallel, modular, login brute-forcer but is not as widely used as Hydra for this specific task.