Pregled bibliografske jedinice broj: 766983
Force multiplier - Guided password cracking
Force multiplier - Guided password cracking // BalCCon2k14 - Balkan Computer Congress
Novi Sad, Srbija, 2014. (pozvano predavanje, nije recenziran, neobjavljeni rad, ostalo)
CROSBI ID: 766983 Za ispravke kontaktirajte CROSBI podršku putem web obrasca
Naslov
Force multiplier - Guided password cracking
Autori
Kišasondi, Tonimir
Vrsta, podvrsta i kategorija rada
Sažeci sa skupova, neobjavljeni rad, ostalo
Skup
BalCCon2k14 - Balkan Computer Congress
Mjesto i datum
Novi Sad, Srbija, 05.09.2014. - 07.09.2014
Vrsta sudjelovanja
Pozvano predavanje
Vrsta recenzije
Nije recenziran
Ključne riječi
password cracking; security
Sažetak
In this talk, I will show how to better target password cracking and guessing attacks against offline password lists or online systems. We will cover custom wordlist creation from multiple languages and sources, targeting via personal data collected by abusing a popular search provider and scraping various databases to obtain enough data to help us. We will show how to use those lists with the help of a tool called unhash to deliver targeted password cracking attacks and drastically reduce our search space. The popularity of usage "slow" hashes like bcrypt, scrypt and PBKDF2 with big round sizes requires us to try a smaller quantity of possible passwords. The adage "Brute force: If it isn't working, you are not using enough of it" is simply not true anymore, so we have to adapt our methods.
Izvorni jezik
Engleski
Znanstvena područja
Informacijske i komunikacijske znanosti
POVEZANOST RADA
Ustanove:
Fakultet organizacije i informatike, Varaždin
Profili:
Tonimir Kišasondi
(autor)
