You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
1.Authentication Brute force<br />
In this section, we will talk about cracking password files for various OSs. Let us start by explaining the<br />
3 methods used by s<strong>of</strong>twares to crack password files.<br />
Dictionary attack<br />
This attack is the quickest one because it does a pass test using a dictionary file (this is a simple text<br />
file with one word per line, one after the other). To have an efficient dictionary, you must collect a<br />
maximum <strong>of</strong> information on the users <strong>of</strong> the target server. On the Internet, there are many already<br />
complete dictionaries, as well as generators.<br />
Brute force attack<br />
The idea is to try all the combinations possible following a certain number <strong>of</strong> characters. If the<br />
password to crack has several special characters, both numbers and letters, it will take longer to brute<br />
force than a pass made up <strong>of</strong> letters only. So a brute force attack always succeeds, it is only a<br />
question <strong>of</strong> time...<br />
Hybrid attack<br />
A hybrid attack is a mix <strong>of</strong> the 2 previous attacks. It uses a dictionary for the main part (e.g. crash) and<br />
brute force for the final part (e.g. fr), which enables it to find passwords such as “crashfr” or “crash24”,<br />
etc...<br />
A) .pwl files <strong>of</strong> Windows9x/ME<br />
Files with the .pwl extension have your Windows passwords, they are in the root directory<br />
(c:\windows). Of course, all .pwl files are encrypted, as you will be able to see if you try to open one<br />
with a text editor such as notepad, for example. These files can contain connection passwords, saving<br />
screens, sessions, ...<br />
To decrypt them, you must use s<strong>of</strong>tware such as Pwltool (http://s<strong>of</strong>t4you.com/vitas/pwltool.asp) that<br />
will take care <strong>of</strong> cracking the file and then display the passwords clearly.<br />
The <strong>Hack</strong>ademy DMP -167/209- SYSDREAM