Duplicate
Export
Register
Untitled
1 PDF
1 Flashcard Deck
Send to Chat
AI Edit
Heading 3
Highlight
Upload a PDF by clicking the button below 👇
1 / 1
100%
View
How to prevent Rainbow attack and Pass the hash attack
Study
Explain Rainbow attack
Rainbow attack is a type of brute force attack that uses pre-computed password hashes. Instead of trying to pass the password, it tries to match the hash in the user database.
Mitigation for Rainbow attack
Rainbow table attacks can easily be prevented by using salt techniques. Salt is a random data that is passed into the hash function along with the plain text. Lockout accounts after a few attempts, use Captcha to slow down brute force, and use multifactor authentication.
What is Pass the hash attack?
Pass the hash is a hacking technique that allows an attacker to authenticate to a remote server or service by using the underlying hash of a user's password instead of requiring the associated plaintext password as is normally the case. This reduces the effort for the attacker as they do not have to crack the plaintext password from the stolen hash.
Mitigation for Pass the hash attack
Restrict and protect high privileged domain accounts to reduce the risk of administrators inadvertently exposing privileged credentials. Restrict and protect local accounts with administrative privileges to restrict attackers from using administrative local accounts for lateral movement. Restrict inbound traffic using the Windows Firewall to block inbound connections on all workstations with the local Windows Firewall.
What is the mitigation strategy to reduce the risk of administrators inadvertently exposing privileged credentials to higher risk computers?
Restrict and protect high privileged domain accounts
What does the mitigation strategy of restricting and protecting local accounts with administrative privileges aim to prevent?
Preventing attackers from using administrative local accounts for lateral movement PtH attacks
How does the mitigation strategy of restricting inbound traffic using the Windows Firewall help reduce the risk of lateral movement from compromised workstations?
By blocking inbound connections on all other workstations with the local Windows Firewall
Send to Chat
AI Edit
Normal Text
Highlight
Scholarly Assistant's Insights
Learn about cyber security attacks like Rainbow attack and Pass the hash attack. Understand mitigation strategies for these attacks.
Cybersecurity
Hacking Techniques
Network Security
Password Security
Mitigation Strategies
+5 more
Ask Scholarly Assistant
Similar Pages
Login to Leave a Comment
Give your feedback, or leave a comment on a page to share your thoughts with the community.
Login