CompTIA PenTest+ (PT0-003) — Question 196

A penetration tester obtains a regular domain user’s set of credentials. The tester wants to attempt a dictionary attack by creating a custom word list based on the Active Directory password policy.

Which of the following tools should the penetration tester use to retrieve the password policy?

Answer options

• A. Responder
• B. CrackMapExec
• C. Hydra
• D. msfvenom

Correct answer: B

Explanation

The correct tool for retrieving the Active Directory password policy is CrackMapExec, as it is specifically designed for network enumeration and can gather this information. Responder is used for capturing NTLM hashes, Hydra is a password-cracking tool, and msfvenom is utilized for payload generation, making them unsuitable for this task.