During user acceptance testing, the security administrator believes to have discovered an issue in
the login prompt of the company’s financial system. While entering the username and password,
the program crashed and displayed the system command prompt. The security administrator
believes that one of the fields may have been mistyped and wants to reproduce the issue to report
it to the software developers. Which of the following should the administrator use to reproduce the
issue?
A.
The administrator should enter a username and use an offline password cracker in brute force
mode.
B.
The administrator should use a network analyzer to determine which packet caused the system
to crash.
C.
The administrator should extract the password file and run an online password cracker in brute
force mode against the password file.
D.
The administrator should run an online fuzzer against the login screen.