Quote:
Originally Posted by alexander
freezy, it could be arranged, you know, it would require written and signed permission from you, but a pen test is something rather fun to do, and i am sure not only myself, but some people i know would not mind performing one, if you are really serious about that...
|
Hmm...I'll get back to you on that. It might be fun to try.
Quote:
also, if you happen to post the format of your password, i can run a test on approximately how long it would take me to break that hash, lets agree on how you will post your password though.
format can be such:
a - alphas, meaning letters
n - numerals, meaning numbers
s - symbols, meaning special symbols
e - extended, meaning extended ascii (space or anything typed with alt+)
PM it to me if you dont feel safe with posting it here (pm is what i would do).
So for example, one of the passwords that was used prior to my involvement with IT at my company was of the form aaaaann. Took about 2 and a half hours to break the hash.
|
Most of my passwords take that form, aaaaaann. That only takes 2.5 hours?
What about a different orientation of the same chars, say, aaanaana?
Quote:
Just so you know, exactly how i am going to test the password strength.
I will take a clean vm, and set the admin and user passwords to 2 i generate of the form given to me. I will then grab the hash and run it through a couple of programs for breaking passwords (and decrypting hashes), nothing anyone who might want your password would not have access to... Log the time it took to to crack each account password with each software, average it out, give you back an average time...
|
I understand how you can run a program to list out all possible combinations of aaaaaann, but how does it apply them in the real world? In other words, say you are trying to figure out your forgotten password for your hotmail account. How would the program test each password with hotmail? Wouldn't this add a significant amount of time to the process? Wouldn't it lock the account after several false tries?
