GIAC Certified Incident Handler (GCIH) — Question 28

What is the outcome of the command below?

hashcat -m 0 -a 3 ntds.dat --potfile-path ntds.potfile -1 ?d?d?d?d?d?d

Answer options

• A. Brute force an md5 hash whose input was numbers
• B. Crack six digit LANMAN passwords
• C. Remove the encryption from the ntds.dat file
• D. Create a dictionary of 3000 usernames

Correct answer: B

Explanation

The correct answer is B because the command specified is designed to brute force six-digit LANMAN passwords using only numeric characters. Option A is incorrect as it refers to md5 hashes, which are not relevant here, while options C and D describe actions that do not correspond to the command provided.