During user acceptance testing, the security administrator believes to have discovered an issue in the login prompt of the company’s financial system. While entering the username and password, the program crashed and displayed the system command prompt. The security administrator believes that one of the fields may have been mistyped and wants to reproduce the issue to report it to the software developers.
Which of the following should the administrator use to reproduce the issue?
A . The administrator should enter a username and use an offline password cracker in brute force mode.
B . The administrator should use a network analyzer to determine which packet caused the system to crash.
C . The administrator should extract the password file and run an online password cracker in brute force mode against the password file.
D . The administrator should run an online fuzzer against the login screen.
Answer: D
Leave a Reply