CompTIA Security+ (SY0-501) — Question 770

Which of the following characteristics differentiate a rainbow table attack from a brute force attack? (Choose two.)

Answer options

• A. Rainbow table attacks greatly reduce compute cycles at attack time.
• B. Rainbow tables must include precomputed hashes.
• C. Rainbow table attacks do not require access to hashed passwords.
• D. Rainbow table attacks must be performed on the network.
• E. Rainbow table attacks bypass maximum failed login restrictions.

Correct answer: B, E

Explanation

Answer B is correct because rainbow tables rely on precomputed hashes to efficiently crack passwords. Answer E is also correct as rainbow table attacks can exploit the system without being hindered by failed login restrictions, unlike brute force attacks that may be limited by such measures. The other options either misrepresent the nature of rainbow tables or do not accurately describe the differences from brute force attacks.