Which event log located at C:Windowssystem32config contains the trace of your brute force attempts?

You have successfully brute forced basic authentication configured on a Web Server using Brutus hacking tool. The username/password is "Admin" and "Bettlemani@". You logon to the system using the brute forced password and plant backdoors and rootkits.

After downloading various sensitive documents from the compromised machine, you proceed to clear the log files to hide your trace..

Which event log located at C:Windowssystem32config contains the trace of your brute force attempts?

You have successfully brute forced basic authentication configured on a Web Server using Brutus hacking tool. The username/password is "Admin" and "Bettlemani@". You logon to the system using the brute forced password and plant backdoors and rootkits.

After downloading various sensitive documents from the compromised machine, you proceed to clear the log files to hide your trace..

Which event log located at C:Windowssystem32config contains the trace of your brute force attempts?

A.
AppEvent.Evt

B.
SecEvent.Evt

C.
SysEvent.Evt

D.
WinEvent.Evt

Explanation:
The Security Event log (SecEvent.Evt) will contain all the failed logins against the system.

Topic 6, Trojans and Backdoors



Leave a Reply 0

Your email address will not be published. Required fields are marked *