Sagar Verma, profile picture
Uploaded bySagar Verma
PPTX, PDF10,790 views

Password Cracking

The document discusses password cracking, its methods, and its implications, highlighting both the techniques used (such as brute force and dictionary attacks) and the security measures in place for password storage. It details various incidents of password theft and the effectiveness of different hacking methods, including social engineering and phishing. The conclusion emphasizes the risks associated with password cracking and the potential misuse of these techniques for malicious purposes.

Embed presentation

Downloaded 68 times
Password Cracking By Sagar Verma 1412213082
Contents • Introduction • What is password • How passwords are stored • Password cracker types • Factors on which password cracking depends • Incidents • Gmail Cracking • Conclusion
Introduction • Password cracking is a term used to describe the penetration of a network, system, or resource with or without the use of tools to unlock a resource that has been secured with a password • It is one of the oldest hacking arts. Every system must store passwords somewhere in order to authenticate users. However, in order to protect these passwords from being stolen, they are encrypted. • Password cracking is the art of decrypting the passwords in order to recover them.
What is Password • String of characters for authentication and log on computer, web application , software, Files , network , Mobile phones, and your life  • Comprises: [a-zA-z, 0-9, symbols , space]
How Passwords are Stored In order to understand how to compromise passwords, it is first necessary to understand how passwords are stored on typical systems. • Unix Password File- It stores the hashed value of passwords in the password file instead of the actual passwords. Hashed passwords were originally stored in publicly accessible file /etc/passwd. • Windows Password File- The password file for Windows, known as the Security Accounts Manager (SAM) file, is located in C:windowssystem32configsam
Password Cracker Types Password crackers use two primary methods to identify correct passwords: • Brute Force Attack • Dictionary Attack There are some more methods like- • Malware • Social Engineering
Dictionary Attack • When conducting a dictionary search, a password cracker searches each word in the dictionary (a file containing most commonly used passwords) for the correct password. • Password dictionaries exist for a variety of topics and combinations of topics, like politics, movies, and music groups.
Brute Force Attack When a password cracker uses a brute-force tool, it tests all the possible combinations of a predetermined length until it finds the right combination accepted by the computer system.
Phishing • There's an easy way to hack: ask the user for his or her password. A phishing email leads the unsuspecting reader to a faked online banking, payment or other site in order to login and put right some terrible problem with their security. • Why bother going to the trouble of cracking the password when the user will happily give it you anyway?
Some more attacks.. Malware A key logger or screen scraper can be installed by malware which records everything you type or takes screen shots during a login process, and then forwards a copy of this file to hacker central. Social Engineering Social engineering takes the whole ‘ask the user’ concept outside of the inbox that phishing tends to stick with and into the real world. A favourite of the social engineer is to telephone an office posing as an IT security tech guy and simply ask for the network access password. You’d be amazed how often this works.
Password Cracking Depends on • Attacker's strengths • Attacker's computing resources • Attacker's mode of access [physical or online] • Strength of the passwords • How often you change your passwords? • How close are the old and new passwords? • How long is your password? • Have you used every possible combination: alphabets, numbers and special characters? • How common are your letters, words, numbers or combination? • Have you used strings followed by numbers or vice versa, instead of mixing them randomly?
Incidents • On July 16, 1998, CERT reported an incident where an attacker had found 186,126 encrypted passwords. By the time they were discovered, they had already cracked 47,642 passwords • On July 18, 2011, Microsoft Hotmail banned the password: "123456” • In July 2015, a group calling itself "The Impact Team" stole the user data of Ashley Madison. • As of 2017, a single GeForce GTX 1080 GPU is capable of testing 25 billion MD5 encryption per second.
Gmail Cracking • By using Dictionary Attack we can easily crack Gmail Account. • If you try to use the Brute force technique to hack any Gmail or Hotmail accounts then it will block your IP and also account for some specific number of attempts. • SMTP server is a simple server with very fewer functionalities, hence it is easy to perform attacks on SMTP server.
Conclusion Password Cracking is a good way of accessing information or getting some useful sources for any organisation, for people. But now a days many of the password cracking techniques are used for the wrong purposes. In case you think you're safe from the attentions of such criminal types, or think they'd never be able to guess your password, perhaps you might be interested to learn just how wrong you are.
Password Cracking

More Related Content

PPTX
Password craking techniques
byأحلام انصارى
 
PPTX
Password cracking and brute force
byvishalgohel12195
 
PPTX
Cyber Security(Password Cracking Presentation).pptx
byVASUOFFICIAL
 
PPTX
Password Cracking
bySina Manavi
 
PPTX
Brute force-attack presentation
byMahmoud Ibra
 
PPTX
Password management
byWilmington University
 
PPTX
Password Attack
bySina Manavi
 
PPTX
Email phishing and countermeasures
byJorge Sebastiao
 
Password craking techniques
byأحلام انصارى
 
Password cracking and brute force
byvishalgohel12195
 
Cyber Security(Password Cracking Presentation).pptx
byVASUOFFICIAL
 
Password Cracking
bySina Manavi
 
Brute force-attack presentation
byMahmoud Ibra
 
Password management
byWilmington University
 
Password Attack
bySina Manavi
 
Email phishing and countermeasures
byJorge Sebastiao
 

What's hot

PPTX
System hacking
byCAS
 
PPTX
Intrusion detection
byCAS
 
DOCX
Password Cracking
byHajer alriyami
 
PPTX
zero day exploits
byAdv. Prashant Mali ♛ [Bsc(Phy),MSc(Comp Sci), CCFP,CISSA,LLM]
 
PPTX
Encryption ppt
byAnil Neupane
 
PPTX
VAPT PRESENTATION full.pptx
byDARSHANBHAVSAR14
 
PPTX
Introduction to filesystems and computer forensics
byMayank Chaudhari
 
PPT
Ethical hacking
byMonika Deswal
 
PPTX
Social engineering
byVîñàý Pãtêl
 
PPTX
Tools and methods used in cybercrime
bypatelripal99
 
PPTX
Phishing attack seminar presentation
byAniketPandit18
 
PPSX
Brute force attack
byJamil Ali Ahmed
 
PPTX
Mobile Forensics
byprimeteacher32
 
PPTX
Social engineering
byVishal Kumar
 
PPT
Intrusion Detection Systems and Intrusion Prevention Systems
byCleverence Kombe
 
PPTX
Incident response
byAnshul Gupta
 
PPTX
Cia security model
byImran Ahmed
 
PPTX
Scanning and Enumeration in Cyber Security.pptx
byMahdiHasanSowrav
 
PPTX
Ransomware
byAkshita Pillai
 
PPTX
Ethical hacking : Its methodologies and tools
bychrizjohn896
 
System hacking
byCAS
 
Intrusion detection
byCAS
 
Password Cracking
byHajer alriyami
 
zero day exploits
byAdv. Prashant Mali ♛ [Bsc(Phy),MSc(Comp Sci), CCFP,CISSA,LLM]
 
Encryption ppt
byAnil Neupane
 
VAPT PRESENTATION full.pptx
byDARSHANBHAVSAR14
 
Introduction to filesystems and computer forensics
byMayank Chaudhari
 
Ethical hacking
byMonika Deswal
 
Social engineering
byVîñàý Pãtêl
 
Tools and methods used in cybercrime
bypatelripal99
 
Phishing attack seminar presentation
byAniketPandit18
 
Brute force attack
byJamil Ali Ahmed
 
Mobile Forensics
byprimeteacher32
 
Social engineering
byVishal Kumar
 
Intrusion Detection Systems and Intrusion Prevention Systems
byCleverence Kombe
 
Incident response
byAnshul Gupta
 
Cia security model
byImran Ahmed
 
Scanning and Enumeration in Cyber Security.pptx
byMahdiHasanSowrav
 
Ransomware
byAkshita Pillai
 
Ethical hacking : Its methodologies and tools
bychrizjohn896
 

Similar to Password Cracking

PPTX
Gamifying Ethical hacking for education.pptx
byyg5ptrdvbg
 
PPTX
Ethical hacking for Business or Management.pptx
byFarhanaMariyam1
 
PPTX
Cybersecurity Essentials - Part 2
byShobhit Sharma
 
PPTX
password cracking and Key logger
byPatel Mit
 
PPTX
When will passwords die? Research challenges and opportunities in user authen...
byShujun Li
 
PPT
password.ppt
byKaxa5
 
PPTX
Passwords
bySonia Rose Mary Karungi
 
PPTX
Password cracking and brute force tools
byzeus7856
 
DOCX
Password hacking
byAbhay pal
 
PPT
Computer Privacy:Passwords-Mike B.
byMike Barker
 
PPTX
2 Laymans Course - LAMP V2.pptx
byssuser2f0fb0
 
PPTX
Password protection
bypost_it
 
PDF
everybody-password-cracking-101.pdf bbgg
byankomahg434
 
PPT
Unit-4 Cybercrimes-II Mobile and Wireless Devices.ppt
byajajkhan16
 
PDF
Yours Advance Security Hood (Yash)
byIOSR Journals
 
PDF
How to choose a password that’s hard to crack
byKlaus Drosch
 
PPTX
P@ssw0rds
byWill Alexander
 
PDF
Password War Games Webinar
bynCircle - a Tripwire Company
 
PDF
Password Cracking using dictionary attacks
bylord
 
PDF
Enterprise Password Worst Practices
byImperva
 
Gamifying Ethical hacking for education.pptx
byyg5ptrdvbg
 
Ethical hacking for Business or Management.pptx
byFarhanaMariyam1
 
Cybersecurity Essentials - Part 2
byShobhit Sharma
 
password cracking and Key logger
byPatel Mit
 
When will passwords die? Research challenges and opportunities in user authen...
byShujun Li
 
password.ppt
byKaxa5
 
Passwords
bySonia Rose Mary Karungi
 
Password cracking and brute force tools
byzeus7856
 
Password hacking
byAbhay pal
 
Computer Privacy:Passwords-Mike B.
byMike Barker
 
2 Laymans Course - LAMP V2.pptx
byssuser2f0fb0
 
Password protection
bypost_it
 
everybody-password-cracking-101.pdf bbgg
byankomahg434
 
Unit-4 Cybercrimes-II Mobile and Wireless Devices.ppt
byajajkhan16
 
Yours Advance Security Hood (Yash)
byIOSR Journals
 
How to choose a password that’s hard to crack
byKlaus Drosch
 
P@ssw0rds
byWill Alexander
 
Password War Games Webinar
bynCircle - a Tripwire Company
 
Password Cracking using dictionary attacks
bylord
 
Enterprise Password Worst Practices
byImperva
 

Recently uploaded

PPTX
Tech Trends 2026: AI Agents, Quantum Computing, Robotics & Cybersecurity
byridwansassman
 
PPTX
Automation Without Apprentices: How AI Challenges the Open Source Way
byIcinga
 
PDF
From Artificial Intelligence to African Intelligence: Transforming Research &...
byMoses Kemibaro
 
PDF
Explaining the flow of purpose-specific BOM
byakipii ogaoga
 
PPTX
apidays Paris 2025 | Building Agentic Workflows
byapidays
 
PDF
Empower your IT team with cloud-based PC management using Dell Management Por...
byPrincipled Technologies
 
PDF
GTM-and-Sales-Plan for a cyber security product
byAshish Jangir
 
PDF
UiPath Automation Developer Associate Training Series 2025 - Session 4
byDianaGray10
 
PDF
Security-Fails-in-the-Gaps-Between-Systems.pptx.pdf
byOhhproJunction
 
PDF
apidays New York 2025 | AI in Application Security
byapidays
 
PDF
apidays Paris 2025 | Zero Trust By Design
byapidays
 
PPTX
Introducing VisualSim 2610 The Next Leap in System Level Modeling
byDeepak Shankar
 
PDF
Automated Governance for FME Flow: Smarter Admin at Scale
bySafe Software
 
PDF
From Hallucinations to High-Confidence AI with Data Enrichment.pdf
byPrecisely
 
PDF
GenerationAI_Paris_2025_Architecting_Intelligence.pdf
byapidays
 
PPTX
Celonis Optimizing your future with process
bydevjeremyappleyard
 
PDF
20260212 Security-JAWS activity results for 2025 and activity goals for 2026
byTyphon 666
 
PDF
Escape from the Forbidden Zone: Smuggling green and inclusive tech past the g...
byBookNet Canada
 
PDF
Chapter 5 Security Mechanisms iin computer security.pdf
byGetnet Tigabie Askale -(GM)
 
PDF
Odoo Implementation Checklist: A Strategic ERP Blueprint for Business-Ready D...
byBANIBRO IT SOLUTION
 
Tech Trends 2026: AI Agents, Quantum Computing, Robotics & Cybersecurity
byridwansassman
 
Automation Without Apprentices: How AI Challenges the Open Source Way
byIcinga
 
From Artificial Intelligence to African Intelligence: Transforming Research &...
byMoses Kemibaro
 
Explaining the flow of purpose-specific BOM
byakipii ogaoga
 
apidays Paris 2025 | Building Agentic Workflows
byapidays
 
Empower your IT team with cloud-based PC management using Dell Management Por...
byPrincipled Technologies
 
GTM-and-Sales-Plan for a cyber security product
byAshish Jangir
 
UiPath Automation Developer Associate Training Series 2025 - Session 4
byDianaGray10
 
Security-Fails-in-the-Gaps-Between-Systems.pptx.pdf
byOhhproJunction
 
apidays New York 2025 | AI in Application Security
byapidays
 
apidays Paris 2025 | Zero Trust By Design
byapidays
 
Introducing VisualSim 2610 The Next Leap in System Level Modeling
byDeepak Shankar
 
Automated Governance for FME Flow: Smarter Admin at Scale
bySafe Software
 
From Hallucinations to High-Confidence AI with Data Enrichment.pdf
byPrecisely
 
GenerationAI_Paris_2025_Architecting_Intelligence.pdf
byapidays
 
Celonis Optimizing your future with process
bydevjeremyappleyard
 
20260212 Security-JAWS activity results for 2025 and activity goals for 2026
byTyphon 666
 
Escape from the Forbidden Zone: Smuggling green and inclusive tech past the g...
byBookNet Canada
 
Chapter 5 Security Mechanisms iin computer security.pdf
byGetnet Tigabie Askale -(GM)
 
Odoo Implementation Checklist: A Strategic ERP Blueprint for Business-Ready D...
byBANIBRO IT SOLUTION
 

Password Cracking

  • 1.
  • 2.
    Contents • Introduction • Whatis password • How passwords are stored • Password cracker types • Factors on which password cracking depends • Incidents • Gmail Cracking • Conclusion
  • 3.
    Introduction • Password crackingis a term used to describe the penetration of a network, system, or resource with or without the use of tools to unlock a resource that has been secured with a password • It is one of the oldest hacking arts. Every system must store passwords somewhere in order to authenticate users. However, in order to protect these passwords from being stolen, they are encrypted. • Password cracking is the art of decrypting the passwords in order to recover them.
  • 4.
    What is Password •String of characters for authentication and log on computer, web application , software, Files , network , Mobile phones, and your life  • Comprises: [a-zA-z, 0-9, symbols , space]
  • 5.
    How Passwords areStored In order to understand how to compromise passwords, it is first necessary to understand how passwords are stored on typical systems. • Unix Password File- It stores the hashed value of passwords in the password file instead of the actual passwords. Hashed passwords were originally stored in publicly accessible file /etc/passwd. • Windows Password File- The password file for Windows, known as the Security Accounts Manager (SAM) file, is located in C:windowssystem32configsam
  • 6.
    Password Cracker Types Passwordcrackers use two primary methods to identify correct passwords: • Brute Force Attack • Dictionary Attack There are some more methods like- • Malware • Social Engineering
  • 7.
    Dictionary Attack • Whenconducting a dictionary search, a password cracker searches each word in the dictionary (a file containing most commonly used passwords) for the correct password. • Password dictionaries exist for a variety of topics and combinations of topics, like politics, movies, and music groups.
  • 8.
    Brute Force Attack Whena password cracker uses a brute-force tool, it tests all the possible combinations of a predetermined length until it finds the right combination accepted by the computer system.
  • 9.
    Phishing • There's aneasy way to hack: ask the user for his or her password. A phishing email leads the unsuspecting reader to a faked online banking, payment or other site in order to login and put right some terrible problem with their security. • Why bother going to the trouble of cracking the password when the user will happily give it you anyway?
  • 10.
    Some more attacks.. Malware Akey logger or screen scraper can be installed by malware which records everything you type or takes screen shots during a login process, and then forwards a copy of this file to hacker central. Social Engineering Social engineering takes the whole ‘ask the user’ concept outside of the inbox that phishing tends to stick with and into the real world. A favourite of the social engineer is to telephone an office posing as an IT security tech guy and simply ask for the network access password. You’d be amazed how often this works.
  • 11.
    Password Cracking Dependson • Attacker's strengths • Attacker's computing resources • Attacker's mode of access [physical or online] • Strength of the passwords • How often you change your passwords? • How close are the old and new passwords? • How long is your password? • Have you used every possible combination: alphabets, numbers and special characters? • How common are your letters, words, numbers or combination? • Have you used strings followed by numbers or vice versa, instead of mixing them randomly?
  • 12.
    Incidents • On July16, 1998, CERT reported an incident where an attacker had found 186,126 encrypted passwords. By the time they were discovered, they had already cracked 47,642 passwords • On July 18, 2011, Microsoft Hotmail banned the password: "123456” • In July 2015, a group calling itself "The Impact Team" stole the user data of Ashley Madison. • As of 2017, a single GeForce GTX 1080 GPU is capable of testing 25 billion MD5 encryption per second.
  • 13.
    Gmail Cracking • Byusing Dictionary Attack we can easily crack Gmail Account. • If you try to use the Brute force technique to hack any Gmail or Hotmail accounts then it will block your IP and also account for some specific number of attempts. • SMTP server is a simple server with very fewer functionalities, hence it is easy to perform attacks on SMTP server.
  • 14.
    Conclusion Password Cracking isa good way of accessing information or getting some useful sources for any organisation, for people. But now a days many of the password cracking techniques are used for the wrong purposes. In case you think you're safe from the attentions of such criminal types, or think they'd never be able to guess your password, perhaps you might be interested to learn just how wrong you are.