This document discusses various high-tech and low-tech methods used for password cracking such as social engineering, shoulder surfing, guessing passwords, and tools like John the Ripper, Hashcat, Cain and Abel, Hydra, Rainbow Crack, and Brutus. It provides information on how these tools work, their features, and the different modes used for password cracking. Finally, it discusses some best practices for password security such as using strong passwords, not reusing passwords, avoiding password sharing, and enforcing strong password policies.

1. PRESENTED BY: SHWETA SHARMA

3. A. SOCIAL ENGINEERING

4. B. SHOULDER SURFING

5. C. GUESSING PASSWORDS

6. H
I
G
H
-
T
E
C
H
M
E
T
H
O
D
S

7.  John the Ripper
 Hashcat
 Cain and Abel
 Hydra
 Rainbow Crack
 Brutus
 Medusa
 OphCrack

8.  Brute force and dictionary
 Modes
Single wordlist
Incremental
 Working of John the ripper

9. i. Open John in Kali Linux

10. ii. Open John in Kali Linux

11. iii. TYPE- “man john” in terminal

12. iv. ADD USER

13. v. ADD USER

14. vi. WORDLIST AND COPY OF SHADOW FILE

15. vii. SHADOW FILE

17. viii. LOGIN SCREEN

19.  Fastest CPU-based tool
 Modes
Straight Toggle-Case Brute force
Combination
 Working of Hashcat tool

20. OPEN HASH CAT TOOL

21. SYNTAX OF HASHCAT TOOL

22. HASH TYPES

23. ATTACK MODES

24. WEBSITE TO GET HASH

25. STORED HASH IN HASH FILE

26. PASSWORD LIST

27. PASSWORDS CRACKED BY HASHCAT

28.  Salt hash
 Fast
 Flexible
hashcat –a 3 hash.txt ?u?l?l?l?d?d

29.  Recovers Passwords
Dictionary
Brute-force
Cryptanalysis
 Features
 Password guessing
 Password Security
 No exploitation of vulnerability

30. CAIN TOOL

31. CAIN TOOL

32. NTLM HASH

33. IMPORT HASH FROM SYSTEM

34. APPLY DICTIONARY ATTACK

35. ADD DICTIONARY TO LIST

36. PRESS START

37. PASSWORD RECOVERED

53.  Establish strong password
 Do not use dictionary words
 Password age
 Stronger authentication method
 Updated system
 Different passwords
 Use punctuation characters

54.  Do not rely on similar looking
characters 3 --- E , 5 --- S , ! --- 1
 Do not share passwords
 Avoid storing passwords in an unsecured
location
 Do not use personal information like date
of birth, pet names.
 Failed login attempts

57. Use strong passwords and enforce a strong
password creation policy