Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Splunk SPLK-5001 Exam - Topic 7 Question 11 Discussion

Actual exam question for Splunk's SPLK-5001 exam
Question #: 11
Topic #: 7
[All SPLK-5001 Questions]

An analyst is examining the logs for a web application's login form. They see thousands of failed logon attempts using various usernames and passwords. Internet research indicates that these credentials may have been compiled by combining account information from several recent data breaches.

Which type of attack would this be an example of?

Show Suggested Answer Hide Answer
Suggested Answer: D

by Paris at Sep 18, 2024, 06:26 PM

Limited Time Offer

25%

Off

Get Premium SPLK-5001 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Sheron
4 months ago
Really? Thousands of attempts? Seems a bit exaggerated.
upvoted 0 times
...
Sunny
5 months ago
I thought it was just a random attack, but this makes sense!
upvoted 0 times
...
Dulce
5 months ago
Wait, are we sure it's not password cracking?
upvoted 0 times
...
Barney
5 months ago
Definitely D, that's how they roll these days.
upvoted 0 times
...
Terry
5 months ago
Sounds like credential stuffing to me!
upvoted 0 times
...
Shawnna
5 months ago
I’m confused between credential stuffing and password spraying; both involve trying multiple credentials, right?
upvoted 0 times
...
Gracia
6 months ago
This sounds like a practice question we did on credential stuffing, where attackers use leaked credentials to try logging in.
upvoted 0 times
...
Tarra
6 months ago
I’m not entirely sure, but I remember something about password cracking being more about guessing passwords rather than using stolen ones.
upvoted 0 times
...
Erin
6 months ago
I think this might be credential stuffing since they’re using a lot of usernames and passwords from breaches.
upvoted 0 times
...
Johana
6 months ago
I'm pretty confident this is a credential stuffing attack. The attacker is exploiting the fact that people often reuse the same credentials across multiple accounts.
upvoted 0 times
...
Barney
6 months ago
Hmm, this is a tricky one. I'm leaning towards password spraying, since the attacker seems to be using a large number of common passwords against multiple usernames, rather than targeting specific accounts.
upvoted 0 times
...
Pamella
6 months ago
Credential stuffing is the way to go here. The attacker is automatically trying a large number of username and password combinations, likely obtained from previous data breaches, to see which ones work on the target system.
upvoted 0 times
...
Hermila
6 months ago
I'm a bit confused on the difference between credential stuffing and password cracking. I'll need to review the definitions of these attack types to make sure I select the right answer.
upvoted 0 times
...
Rozella
6 months ago
This seems like a classic credential stuffing attack. The attacker is trying to use stolen credentials from other breaches to gain unauthorized access to the web application.
upvoted 0 times
...
Delsie
2 years ago
Gotta be password cracking, right? All those failed attempts sound like a good old-fashioned brute force attack to me. Hackers these days, they really put the 'cracking' in 'password cracking'.
upvoted 0 times
Alton
1 year ago
D) Credential stuffing
upvoted 0 times
...
Francine
1 year ago
D) Credential stuffing
upvoted 0 times
...
Alpha
1 year ago
D) Credential stuffing
upvoted 0 times
...
Leota
1 year ago
C) Password spraying
upvoted 0 times
...
Bettina
1 year ago
C) Password spraying
upvoted 0 times
...
Delmy
1 year ago
B) Password cracking
upvoted 0 times
...
Frederick
1 year ago
A) Credential sniffing
upvoted 0 times
...
Vallie
1 year ago
B) Password cracking
upvoted 0 times
...
Emile
1 year ago
A) Credential sniffing
upvoted 0 times
...
...
Sheron
2 years ago
I'm not sure, but I think it could also be password spraying. What do you guys think?
upvoted 0 times
...
Felicitas
2 years ago
I'm going with D. Credential stuffing. It's like a hacker's version of 'spaghetti against the wall' - throw a bunch of creds and see what sticks.
upvoted 0 times
...
Tijuana
2 years ago
Hmm, I'd say it's credential stuffing. Those breached credentials are being used to test the login form - no guesswork involved.
upvoted 0 times
Rolf
1 year ago
Credential stuffing is a common attack method using breached credentials.
upvoted 0 times
...
Alfred
2 years ago
Definitely credential stuffing, using known credentials to gain unauthorized access.
upvoted 0 times
...
Barrett
2 years ago
Yeah, credential stuffing makes sense in this scenario.
upvoted 0 times
...
Mary
2 years ago
I agree, it sounds like credential stuffing.
upvoted 0 times
...
...
Eugene
2 years ago
I agree with Daniel. Credential stuffing makes sense given the scenario.
upvoted 0 times
...
Hoa
2 years ago
C'mon, this is a no-brainer. Password spraying is the obvious choice here. All those failed attempts using different creds? That's a textbook case.
upvoted 0 times
Kathrine
2 years ago
Yeah, credential stuffing wouldn't involve trying different usernames and passwords like that.
upvoted 0 times
...
Idella
2 years ago
I agree, it's definitely a password spraying attack.
upvoted 0 times
...
...
Daniel
2 years ago
I think this would be an example of credential stuffing.
upvoted 0 times
...

Save Cancel