Brute Force Attack

Brute force tries many passwords/keys until one works.

Updated: 2026-03-06

Definition

Brute force attacks attempt many credential combinations to guess passwords or keys.

Defenses include MFA, rate limiting, account lockouts, and strong password policies.

Key points

Targets authentication systems
Defend with MFA + rate limiting
Monitor for repeated failed logins

Common mistakes

Locking accounts too aggressively (DoS risk).
Weak password policies and reused passwords.

Related exams

CompTIA Security+ (SY0-701)

Free Security+ SY0-701 mini test with focused next steps. Continue in the app for offline packs and detailed explanations.

CompTIA A+ (220-1201 / 220-1202)

Free CompTIA A+ mini test with focused next steps. Continue in the app for offline packs and detailed explanations.

Related terms

Want to practice this in exam-style questions?

Use the mini tests on each exam page, then continue in the app for offline packs and detailed explanations.