The password is the key Secret phrase, stored hash ``` • Brute force attacks - Online • Keep trying the login process • Very slow • Most accounts will lockout after a number of failed attempts ``` Brute force the hash - Offline Obtain the list of users and hashes Calculate a password hash, compare it to a stored hash Large computational resource requirement

People use common words as passwords You can find them in the dictionary • If you’re using brute force, you should start with the easy ones • password, ninja, football Many common wordlists available on the ‘net Some are customized by language or line of work • This will catch the low-hanging fruit • You’ll need some smarter attacks for the smarter people

Brute Force Attacks Flashcards by Pat Man

Brute force

The password is the key
- Secret phrase, stored hash

• Brute force attacks - Online
  • Keep trying the login process
  • Very slow
  • Most accounts will lockout after a number of failed
attempts

Brute force the hash - Offline
- Obtain the list of users and hashes
- Calculate a password hash, compare it to a stored hash
- Large computational resource requirement

How well did you know this?

Not at all

Perfectly

Dictionary attacks

People use common words as passwords
- You can find them in the dictionary

• If you’re using brute force,
you should start with the easy ones
• password, ninja, football

Many common wordlists available on the ‘net
- Some are customized by language or line of work

• This will catch the low-hanging fruit
• You’ll need some smarter attacks
for the smarter people

How well did you know this?

Not at all

Perfectly

Brainscape's Knowledge GenomeTM

Brute Force Attacks Flashcards

Brainscape's Knowledge Genome^TM