GIAC Exam GPEN Topic 6 Question 60 Discussion

Actual exam question for GIAC's GPEN exam

Question #: 60
Topic #: 6

[All GPEN Questions]

Which of the following statements are true about NTLMv1?

Each correct answer represents a complete solution. Choose all that apply.

AIt uses the LANMAN hash of the user's password.

BIt is mostly used when no Active Directory domain exists.

CIt is a challenge-response authentication protocol.

DIt uses the MD5 hash of the user's password.

Show Suggested Answer

Suggested Answer: A, B, C

by Sarah at Sep 13, 2024, 08:31 PM

Limited Time Offer

25%

Off

Get Premium GPEN Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Ryan

4 days ago

Ah, I remember learning about NTLMv1 in my security class. It's a challenge-response protocol, and it's often used when there's no Active Directory domain.

upvoted 0 times

...

Jarvis

6 days ago

I'm pretty sure NTLMv1 uses the LANMAN hash, not MD5. That's definitely the right answer.

upvoted 0 times

...

Anjelica

9 days ago

Actually, you're right. C is the correct answer because NTLMv1 is a challenge-response authentication protocol.

upvoted 0 times

...

Percy

10 days ago

I disagree, I believe C is the correct statement.

upvoted 0 times

...

Anjelica

17 days ago

I think A and B are true about NTLMv1.

upvoted 0 times

...