Fast Password Cracking with a Huge Dictionary File and oclHashcat-Plus (blog post)

Discussion in 'privacy problems' started by MrBrian, Dec 24, 2013.

Thread Status:
Not open for further replies.
  1. MrBrian

    MrBrian Registered Member

    Joined:
    Feb 24, 2008
    Posts:
    6,032
    Location:
    USA
    From http://cyberarms.wordpress.com/2013...h-a-huge-dictionary-file-and-oclhashcat-plus/:
     
  2. MrBrian

    MrBrian Registered Member

    Joined:
    Feb 24, 2008
    Posts:
    6,032
    Location:
    USA
    From one of the links mentioned in the link in the last post:
     
  3. woomera

    woomera Registered Member

    Joined:
    May 21, 2004
    Posts:
    211
    hehe eye opening, really. 5 min 70+% passwords cracked.
     
  4. MrBrian

    MrBrian Registered Member

    Joined:
    Feb 24, 2008
    Posts:
    6,032
    Location:
    USA
    From Your Clever Password Tricks Aren't Protecting You from Today's Hackers:
     
    Last edited: Dec 27, 2013
  5. MrBrian

    MrBrian Registered Member

    Joined:
    Feb 24, 2008
    Posts:
    6,032
    Location:
    USA
  6. Mrkvonic

    Mrkvonic Linux Systems Expert

    Joined:
    May 9, 2005
    Posts:
    8,695
    Nothing to do with actual technology.
    It's just that people use passwords like 123456.
    Passwords are as weak as they have always been.
    Mrk
     
  7. Hungry Man

    Hungry Man Registered Member

    Joined:
    May 11, 2011
    Posts:
    9,148
    OCLHashcat now can crack longer passwords. It's a technical improvement. They also plug in larger dictionaries now, since it can take 16+ character passwords.

    The increase isn't mentioned in the article, but most of what they do is technical (rules, ex)
     
    Last edited: Dec 28, 2013
  8. Baserk

    Baserk Registered Member

    Joined:
    Apr 14, 2008
    Posts:
    1,317
    Location:
    AmstelodamUM
    Folks should use words as pronounced by a toddler.
    2/3-year olds will save your bacon. Just listen to some cute yet incoherent rambling and remember the phrase that made you laugh.
    Passwords are easy as hell, depending on the 'cuteness-level' as easy as wan-sou-sree.
    But seriously, a lot of users are pretty resistant to the need of using just-a-bit-better-passwords.
    Operant conditioning is the only thing that works there.
     
    Last edited: Dec 30, 2013
  9. wat0114

    wat0114 Registered Member

    Joined:
    Aug 5, 2012
    Posts:
    1,983
    Location:
    Canada
    It would help a lot as well if more sites used stronger hashing algorithms than the weaker SHA1, DES, and MD5 algorithms that some are using.

    Of course this just means it's up to the end user to employ strong passwords/phrases to help make up for these weaknesses.
     
Loading...
Thread Status:
Not open for further replies.