Which method of attack is known for its exhaustive nature in cracking passwords?

The method of attack known for its exhaustive nature in cracking passwords is brute-force. This technique involves systematically attempting every possible combination of characters until the correct password is found. Brute-force attacks can be quite resource-intensive, as they can require vast amounts of computational power and time, especially when dealing with complex passwords that include a variety of characters.

The exhaustive nature of this method distinguishes it from other attack vectors. In a brute-force attack, the attacker does not rely on any weaknesses in a system's design or programming (as seen in SQL injection or cross-site scripting). Instead, the attacker simply leverages computing power to test every possibility, which can eventually lead to success at the cost of time and resources.

In contrast, social engineering relies on manipulating individuals into divulging confidential information, rather than cracking passwords through sheer computational effort. Therefore, while social engineering can be effective, it does not provide the same exhaustive method of attack that brute-force employs.