Exploit: Password Cracking - PowerPoint PPT Presentation

1 / 19
About This Presentation
Title:

Exploit: Password Cracking

Description:

Password cracking is a term used to describe the penetration of a network, ... aaa, aab, aac... aaA, aaB, aaC... aa0, aa1, aa2, aa3... aba, aca, ada. ... – PowerPoint PPT presentation

Number of Views:190
Avg rating:3.0/5.0
Slides: 20
Provided by: ITLG
Category:

less

Transcript and Presenter's Notes

Title: Exploit: Password Cracking


1
Exploit Password Cracking
2
An Overview on Password Cracking
  • Password cracking is a term used to describe the
    penetration of a network, system, or resource
    with or without the use of tools to unlock a
    resource that has been secured with a password

3
Introduction
  • System vulnerabilities with passwords
  • Strong passwords Vs Weak
  • Examples of vulnerabilities
  • Applications
  • FTP, HTTP, Telnet
  • Password Cracking Tools
  • Tools in Common
  • Brutus Password Cracker

4
Experiment on Password Cracking
  • Platform Windows.
  • Setting up of machines with services
  • Target Machine (Server)
  • Client

5
Setting up of Machines
  • DHCP/Switch

6
About Brutus Password Cracker
  • Supported Applications
  • Telnet, FTP, HTTP
  • Methods used to engage with Remote machine
  • Word List
  • Combo
  • BruteForce

7
A Quick Look On Brutus Password Cracker
8
Engaging Remote Machine Using Word List
  • The Method
  • - Creates many number of combinations of
    Possible System passwords from two separate
    filesusers and word.
  • - Engages remote machine
  • enter word after word, at high speed, until a
    match is found.

9
Engaging Remote Machine using Word List
statler waldorf admin administrator
Sample Entries for File word aaa abc123
academia academic
  • Sample Entries for File users

10
Engaging Remote FTP Server Using Word List
11
Word List A Failed attempt
12
Sample Trace for the Method - Word List
13
Engaging Remote Server using Combo
  • The Method
  • Similar to Word List
  • Uses combo file to generate combinations
    passwords for each users of the remote system.
  • Uncertain Needs more guessing
  • Sample combo file Entries
  • adminadmin1
  • adminadmin12
  • adminadmin123

14
Engaging Remote Server using BruteForce
  • The Method
  • - Guaranteed to some extent
  • - Relies purely on power and repetition
  • - Need very high processing speed
  • - Produces many number of passwords for a
    particular user using permutations and
    combinations
  • - May take months years to crack the password

15
Examples of Generated passwords
  • aaa, aab, aac... aaA, aaB, aaC... aa0, aa1, aa2,
    aa3... aba, aca, ada..
  • Each of the combinations of characters and
    symbols is fed through the appropriate
    cryptographic algorithm and compared to the
    stored password until a match is found.

16
Engaging Remote Machine Using BruteForce
  • A sample display on initial settings just before
    engaging.

17
Engaging Remote Machine Using BruteForce
  • A sample display on initial settings just before
    engaging.

18
Engaging Remote Machine Using BruteForce
  • Sample display on cracked password

19
Questions? Comments?
Write a Comment
User Comments (0)
About PowerShow.com
Home About Us Terms and Conditions Privacy Policy Presentation Removal Request Contact Us
Copyright 2024 CrystalGraphics, Inc. — All rights Reserved. PowerShow.com is a trademark of CrystalGraphics, Inc.
The PowerPoint PPT presentation: "Exploit: Password Cracking" is the property of its rightful owner.
Do you have PowerPoint slides to share? If so, share your PPT presentation slides online with PowerShow.com. It's FREE!