It looks like you're using an Ad Blocker.
Please white-list or disable AboveTopSecret.com in your ad-blocking tool.
Thank you.
Some features of ATS will be disabled while you continue to use an ad-blocker.
Password Hackers List
page: 2share:
I prefer pass-phrases to "pass words" for various reasons. The main one being my understanding of computer-based password cracking.
This is a subject I've studied a little bit, for reasons I won't get into.
There are PW-cracker programs out there that one can use. They can be programed with dictionary files, which will then try to "brute force" their way into an account. Many accounts have systems in place to prevent this (which is why on some sites your login will be locked after 5 failed attempts.) The best brute force programs, however, have ways around this. (And don't bother looking if you don't already understand, as you have to know a little something just to set the right parameters for software like this).
As I mentioned, most of these programs can be made to check passwords on a dictionary file. There are dic files which contain all the words in a common dictionary, and then there are specialized ones. I've seen dictionary files which contain lists of the most commonly used passwords, and I've written custom files which will check particular words and sequences of numbers based on a particular person's interests (and of course birthdays, etc etc)
The other way a program like this can function is an alphanumeric attack where it will try every possible combination (with a set of parameters which you choose), beginning at 0000 (or wherever you choose) and ending at zzzzzzzzzzzzzzzz (or wherever you choose) and checking every combination in between. This is why many sites make you combine numbers with letters. In most alpha-numeric attacks abc123 will occur much later in the search than just abcdef or 123456.
As you can imagine, it takes time and processing power to keep trying, and failing, passwords on any account. The serious crackers will run multiple programs (sometimes on multiple computers) to help speed things up. A real hacker could harness MANY computers for this task. That kind of thing is way above my level of understanding. lol
Point being, however, this is the reason they tell you to change your PW often. The longer it remains the same, the greater the chance a skilled cracker could force their way into your account.
When I am not using shorter combos of letters and numbers (for accounts which are not particularly vital to me) I enjoy using long phrases I can easily remember.
inordertoformamoreperfectunion
or even better
inorderto4mamoreperfectunion
This is a subject I've studied a little bit, for reasons I won't get into.
There are PW-cracker programs out there that one can use. They can be programed with dictionary files, which will then try to "brute force" their way into an account. Many accounts have systems in place to prevent this (which is why on some sites your login will be locked after 5 failed attempts.) The best brute force programs, however, have ways around this. (And don't bother looking if you don't already understand, as you have to know a little something just to set the right parameters for software like this).
As I mentioned, most of these programs can be made to check passwords on a dictionary file. There are dic files which contain all the words in a common dictionary, and then there are specialized ones. I've seen dictionary files which contain lists of the most commonly used passwords, and I've written custom files which will check particular words and sequences of numbers based on a particular person's interests (and of course birthdays, etc etc)
The other way a program like this can function is an alphanumeric attack where it will try every possible combination (with a set of parameters which you choose), beginning at 0000 (or wherever you choose) and ending at zzzzzzzzzzzzzzzz (or wherever you choose) and checking every combination in between. This is why many sites make you combine numbers with letters. In most alpha-numeric attacks abc123 will occur much later in the search than just abcdef or 123456.
As you can imagine, it takes time and processing power to keep trying, and failing, passwords on any account. The serious crackers will run multiple programs (sometimes on multiple computers) to help speed things up. A real hacker could harness MANY computers for this task. That kind of thing is way above my level of understanding. lol
Point being, however, this is the reason they tell you to change your PW often. The longer it remains the same, the greater the chance a skilled cracker could force their way into your account.
When I am not using shorter combos of letters and numbers (for accounts which are not particularly vital to me) I enjoy using long phrases I can easily remember.
inordertoformamoreperfectunion
or even better
inorderto4mamoreperfectunion
reply to post by iwilliam
For a hacker with the computing power to make 1000 guesses a second a five-letter random all lower case password would take three and three-quarter hours to crack
If you increase your password to twenty letters the hack time goes up
www.guardian.co.uk...
Cran
For a hacker with the computing power to make 1000 guesses a second a five-letter random all lower case password would take three and three-quarter hours to crack
If you increase your password to twenty letters the hack time goes up
and the cracking time increases, just a little bit: it's 6.5 thousand trillion centuries.
www.guardian.co.uk...
Cran
reply to post by cranspace
Yes, me also. And, believe it or not, a great many Administrators of companies also use simple, easy to guess passwords. Here is a free tip for you all, from one who has a bit of experience in these matters. A hacker uses dictionaries to crack passwords, one for all lower case, one for all Upper Case, one for numbers, and one for symbols. If you use all four in your password, then the hacker has to run all dictionaries, which takes some time to do. Delay him long enough, he will go away to another, easier computer. The 4 most common passwords I have ran across is god, love, sex, and 123456.... Go figure.
I am stunned that people would use the word Password for there security
Yes, me also. And, believe it or not, a great many Administrators of companies also use simple, easy to guess passwords. Here is a free tip for you all, from one who has a bit of experience in these matters. A hacker uses dictionaries to crack passwords, one for all lower case, one for all Upper Case, one for numbers, and one for symbols. If you use all four in your password, then the hacker has to run all dictionaries, which takes some time to do. Delay him long enough, he will go away to another, easier computer. The 4 most common passwords I have ran across is god, love, sex, and 123456.... Go figure.
Originally posted by autowrench
.Delay him long enough, he will go away to another, easier computer. The 4 most common passwords I have ran across is god, love, sex, and 123456.... Go figure.
For reasons of accuracy I would amend that first sentence to read "...he will USUALLY go away...."
In most cases this is true, of course. When you're talking about random hackers just grabbing accounts for whatever reaon... However, not so when the account is being specifically targeted for some reason. Whether that account contains important information, or desired access to information, or if the cracker in question is someone you know, trying to get into an account.
edit on 26-10-2012 by iwilliam because: (no reason given)
Um...you just GAVE US your password!!!
duh i reversed the numbers, i'm not stupid.
Someone did a study that was recently disseminated all over the web (although its originally from 2007) finding that the best passwords are actually
easy to remember phrases using two or three common words, for example Peanut Butter Jelly.
Passwords of this type would theoretically take 2000+ years to brute force and you dont have the added security issue of people having to write their passwords down on a bit of paper next to the computer (a common problem with complex alpha numeric passwords)
Heres the article if anyone wants to take a look link
Passwords of this type would theoretically take 2000+ years to brute force and you dont have the added security issue of people having to write their passwords down on a bit of paper next to the computer (a common problem with complex alpha numeric passwords)
Heres the article if anyone wants to take a look link
edit on 26-10-2012 by davespanners because: (no reason given)
Originally posted by davespanners
Passwords of this type would theoretically take 2000+ years to brute force and you dont have the added security issue of people having to write their passwords down on a bit of paper next to the computer (a common problem with complex alpha numeric passwords)
I saw that once, in a state organisation that had no internal network administrator (they had a private company doing that job for them), the computer monitor closest to the servers room had a post-it with the admin password.
It's an urban myth pretty much that you shouldn't write down your passwords. Of course having them on post it's next to the servers/computers is
bad idea but other than that. Also hackers use a trick by writing down the password but leaving a key word out of it.
new topics
-
President BIDEN Vows to Make Americans Pay More Federal Taxes in 2025 - Political Suicide.
2024 Elections: 57 minutes ago -
Ode to Artemis
General Chit Chat: 1 hours ago -
Ditching physical money
History: 5 hours ago -
One Flame Throwing Robot Dog for Christmas Please!
Weaponry: 5 hours ago -
Don't take advantage of people just because it seems easy it will backfire
Rant: 5 hours ago -
VirginOfGrand says hello
Introductions: 6 hours ago -
Should Biden Replace Harris With AOC On the 2024 Democrat Ticket?
2024 Elections: 7 hours ago -
University student disciplined after saying veganism is wrong and gender fluidity is stupid
Education and Media: 9 hours ago -
Geddy Lee in Conversation with Alex Lifeson - My Effin’ Life
People: 10 hours ago -
God lived as a Devil Dog.
Short Stories: 10 hours ago
top topics
-
Hate makes for strange bedfellows
US Political Madness: 15 hours ago, 20 flags -
University student disciplined after saying veganism is wrong and gender fluidity is stupid
Education and Media: 9 hours ago, 12 flags -
Police clash with St George’s Day protesters at central London rally
Social Issues and Civil Unrest: 12 hours ago, 9 flags -
President BIDEN Vows to Make Americans Pay More Federal Taxes in 2025 - Political Suicide.
2024 Elections: 57 minutes ago, 7 flags -
TLDR post about ATS and why I love it and hope we all stay together somewhere
General Chit Chat: 13 hours ago, 7 flags -
Should Biden Replace Harris With AOC On the 2024 Democrat Ticket?
2024 Elections: 7 hours ago, 6 flags -
Don't take advantage of people just because it seems easy it will backfire
Rant: 5 hours ago, 4 flags -
One Flame Throwing Robot Dog for Christmas Please!
Weaponry: 5 hours ago, 4 flags -
God lived as a Devil Dog.
Short Stories: 10 hours ago, 3 flags -
Ditching physical money
History: 5 hours ago, 3 flags
active topics
-
President BIDEN Vows to Make Americans Pay More Federal Taxes in 2025 - Political Suicide.
2024 Elections • 1 • : starvosan -
Should Biden Replace Harris With AOC On the 2024 Democrat Ticket?
2024 Elections • 44 • : budzprime69 -
Hundreds of teenagers flood into downtown Chicago, smashing car windows
Other Current Events • 111 • : 777Vader -
British TV Presenter Refuses To Use Guest's Preferred Pronouns
Education and Media • 125 • : Annee -
University student disciplined after saying veganism is wrong and gender fluidity is stupid
Education and Media • 22 • : ImagoDei -
Who guards the guards
US Political Madness • 4 • : kwaka -
New whistleblower Jason Sands speaks on Twitter Spaces last night.
Aliens and UFOs • 44 • : pianopraze -
"We're All Hamas" Heard at Columbia University Protests
Social Issues and Civil Unrest • 263 • : YourFaceAgain -
Remember These Attacks When President Trump 2.0 Retribution-Justice Commences.
2024 Elections • 50 • : Asher47 -
Ode to Artemis
General Chit Chat • 0 • : BrotherKinsMan