Questions tagged [dictionary-attack]

A dictionary-attack is a one in which the attacker guesses a subset of the allowed input values based on assumptions about likely keys (e.g. that they may be based on dictionary words).

Dictionary attacks can be made more efficient (in terms of time to use) by pre-computing the hashes of all of the potential keys in the dictionary. This dictionary of hashes is referred to as a rainbow table.

Rainbow tables can be invalidated by the use of a salt, which increases the key size by appending random data. This will at least force the re-computation of a rainbow table for a specific instance (assuming the salt can be determined by the attacker). However, if a sufficiently random salt is used for every hashed value, creating a rainbow table would become impractical, requiring the attacker to computer a rainbow table as many times larger as the number of possible values of the salt.[1]

28 questions

votes

2 answers

Dictionary attack on SHA1 hash

The following is my code. I have been trying to fix the code to perform dictionary attack on a hash (SHA-1) and I am getting the following result. P.S. I am a beginner to coding. import hashlib import random #plug in the hash that needs to be…

asked Apr 17 '18 at 23:50

Kiran Vasu

votes

2 answers

Spring security 2.0.3 & Dictionary attacks

I'm running spring security 2.0.3 and i need to implement a simple dictionary attack block , the implantation is quite trivial , adding a property of of userstatus and a value of blocked when the value is assigned when he has X times of wrong…

spring-security dictionary-attack

asked Jan 31 '11 at 14:20

Amnon

1,241
3
10
19

votes

3 answers

Python - create wordlist from given characters of that contain 4-5 letters and 5-6 numbers ONLY

I'm looking to preform a dictionary attack and want to know how to create a wordlist that has every 10 letter permutation of the letters a-f and 2-9 (which I can do) WHEN every word contains 5 letters (a-f) and 5 numbers (2-9) OR 6 letters (a-f) and…

python python-3.x python-itertools dictionary-attack

asked Oct 11 '15 at 20:14

findavcol

votes

2 answers

PYTHON 2.7.9: NameError: name '___' is not defined

I'm new to programming, but I'm trying to create the following script. Can you show me what I'm doing wrong? import smtplib smtpserver = smtplib.SMTP("smtp.gmail.com", 587) smtpserver.ehlo() smtpserver.starttls() user = raw_input("Enter the…

python dictionary-attack

asked Oct 11 '15 at 00:43

Rusty Flick

votes

1 answer

Extract (stream-like) compressed wordlist directly to shell, line by line

I want to extract a huge wordlist and use its contents like a "stream" to the shell. This would permit one to perform dictionary attacks without having to decompress the entire wordlist.

shell compression dictionary-attack word-list

asked Jan 20 '15 at 23:00

Allan Denis

votes

2 answers

Use THC hydra to make dictionary attack on localhost

I have programmed a log in in my webpage and now I want to test it against a dictionary attack. I am using Apache and my website is not online so to access it I connect to localhost/website In hydra I am using the command hydra -l username -P…

brute-force penetration-testing hydra dictionary-attack

asked Jan 20 '15 at 10:01

davide l

votes

1 answer

Checking if the attempt was successful during a Dictionary Attack

I am doing a project where in I have to carry out a Dictionary Attack. I am running a script that posts to the page that the login page would post to(say members.php). Only thing that happens in the server side after a correct username and passwords…

javascript cookies forms dictionary-attack http-post

asked Nov 24 '14 at 23:29

proteann

votes

2 answers

Is Bruteforce attack really an achievable thing?

I am trying to penetration test one of my websites.Username and Password is unknown to me.I am trying to break username and password using brute force attack. Although,This strategy should be straight as I need to keep generating a new alphanumeric…

security passwords brute-force dictionary-attack

asked Mar 18 '14 at 04:40

user3431522

-1

votes

1 answer

How to make an dictionary attack to a .p12 with password (educative pruposes)

Which programme or command do you use to extract the public key from a p12 protected with a password? I am trying with the command hydrabut i think it only works along networks

security encryption public-key-encryption dictionary-attack

asked Nov 27 '18 at 12:29

James

-1

votes

1 answer

Jailing and BackOff in Network Security

How can Jailing and Backoff be used to demotivate online dictionary attack in an authentication system?

network-security dictionary-attack

asked Jul 22 '16 at 15:47

Rah Zun Tamang

-2

votes

1 answer

Algorithm to generate all combinations of a specific size from a single set

I am looking for solution in c# to generate combinations on given list of characters or word to perform dictionary attack on zip files. because we lost passwords file for those zip. Advantage is that we know possible words on it. Dictionary should…

c# algorithm statistics combinations dictionary-attack

asked Aug 15 '15 at 17:31

bommina

-2

votes

1 answer

Python xmpp brute force script not working

I have written a (very) simple python scrip using xmpppy to try and make an xmpp(jabber) account brute forcer but when I try to run it I get: line 5 print "Syntax: xsend JID text" SyntaxError: invalid syntax. Any Ideas what I am doing…

python python-3.x xmpp xmpppy dictionary-attack

asked Jul 22 '14 at 18:26

Struan Robertson

-2

votes

1 answer

What would be the expected time to find all users passwords in UNIX using dicitionary attack?

I was reading that the designers of UNIX password algorithm used a 12 bit salt to modify the E-table of the unix hashing function (the DES). Supposing i have a system with 2^(24) users? Is that ever possible to user dictinary attack? and if so how…

cryptography password-protection salt dictionary-attack

asked Apr 25 '12 at 15:55

superfloyd

Prev 1