🔥 3-day streak
CompTIA PenTest+ (PT0-003)95 / 175
Question 95 of 175

During an internal penetration test, you dump the local SAM database on a compromised Windows workstation and recover the NTLM hash for a local administrator account. You discover that this same local admin account and password are reused across many hosts in the environment. The target hosts require NTLM authentication and you do not have the cleartext password. Which technique lets you authenticate to the other hosts and move laterally using only the recovered hash?

Reviewed for accuracy · Report an issueNext question