SANS SEC504: Hacker Tools, Techniques and Incident Handling — Question 17

Which of the following attacks capture the secret value like a hash and reuse it later to gain access to a system without ever decrypting or decoding the hash?

Answer options

• A. Cross Site Scripting attack
• B. Replay attack
• C. Rainbow attack
• D. Hashing attack

Correct answer: B

Explanation

The correct answer is B, Replay attack, as it specifically involves capturing and reusing authentication data to gain unauthorized access. Options A, C, and D do not involve reusing captured hashes in the same manner and focus on different attack vectors or methods.