You have been asked to describe the different types of penetration tests that can be conducted. Take this opportunity to discuss the differences between white-box and black-box testing. One important task that is conducted during a penetration test is an assessment of password strength, or simply, to crack passwords to allow for further access. This may take the shape of running a test against known passwords or exploiting a vulnerability and stealing the password hashes and trying to crack them. In either case, the concept is the same; the difference is how the password hashes are obtained. There are many tools available to perform this task. To help give an understanding of these tools, this activity will have you explore some of these tools and analyze them to find the right fit for you and your organization. Use 1 of the tools described in the Unit 4 Individual Project. Extract the password hashes from a machine, and then describe the importance of hashing.
![[object Object]](/_next/image/?url=%2F_next%2Fstatic%2Fmedia%2Flogo.6d15ce61.png&w=640&q=75){kind=small}
![[object Object]](/_next/static/media/star-bottom.7253800d.svg)
