Password Guessing Tut (Advanced Tactics)
Posted: Thu Jul 02, 2009 1:25 am
______Introduction______
This is all the information i know about guessing a password, And or cracking it. Everything we have on the internet is usually password protected. Some people are really good at cracking computer passwords just by guess. Some simply use programs to do this for them. But one thing is in common with these methods. Some one wrote the passwords in there.
Assuming the password is a actual word then dictionary attacks are great. But with modern day slang and other such things this can take either very long or very short depending on your word list. Cracking a password with brute force is very long... You could spend up to a month with still no results with brute force.
______Google is a powerful tool______
If we know the user name of a target such as SarahK1212 (Example only) we could Google that and come up with a lot of results or few results. So long as you know how to read the information you have tons of information on them. Lets say we find her Myspace and its not on private. We now have her Full name , Her age, Friends, Location, Music, Interests, Blogs, Etc. If you find your targets Myspace you could crack her password in less then a day.
Also you find what site's she goes to like... Stickam, Myyearbook, Youtube, Twitter, And other social networking site's. Knowing how most sites are you get limited amount of attempts before either a image verification comes up or a run out of attempts thing. Knowing how people are as well she probably uses the same password for all websites. so all you have to do is switch from site to site till you crack her password.
______The Obvious______
There are Thousands of people that use bad passwords.
Password
N00b
letmein
admin
root
toor
lol
rofl
lmao
etc
so that would be the first thing to check then see if it is her lastname+age(or age of sign up) also with the first name to. then try the year if her age dose not work.
Kristan14
Sarah14
Sarah09
Kristan09
SarahKristan14
KristanSarah14
SarahKristan09
KristanSarah09
Then try that with initals or middle name
______Pets,School,Boyfreind/Girlfreind______
All this can usually be found in pictures people love taking pictures with pets and they usually supply the name
Fluffy
Then add things to it like persons last name
FluffyKristan
Even with the year
FluffyKristan09
School
BaronHigh
or maskot
BaronBoy
with year of grad or current year
Baronboy 2013
Baronboy 2009
Then try it with bf/gf name
EricKyle
EricKyle13
EricKyle09
______Other Tips______
1.Most people dont use spaces in there password so leave them out.
2.Try with proper caps then all lower then all upper.
3.It's not always the information I supplied up here you have to generate most passwords on your own.
4.Numbers are a part of passwords due to paranoia.
5.Its not likely you will find Admin passwords like this since you cant Google admin.
6.This method is longer then dictionary usually but much shorter then brute force.
7.Be patient you cant always get the password on guessing with just a day.
8.Write down what you tried so you dont forget.
9.Or you can write them down ahead of time and have a program attack for you. (much harder and longer sometimes dosent work for image validate)
10.Make sure to tinker with postioning of letters or l33t code some for those "hackers"/gamers.
Make sure you have a secure password such as
ASdf%8dk
*Sj3O9ud
Ajs83Sjn
UJ9t7Ehj
these are usually uncrackable with guessing inless faced with a experienced cracker
This is for educational purpose only. Dont blame me for incompetence.
This is all the information i know about guessing a password, And or cracking it. Everything we have on the internet is usually password protected. Some people are really good at cracking computer passwords just by guess. Some simply use programs to do this for them. But one thing is in common with these methods. Some one wrote the passwords in there.
Assuming the password is a actual word then dictionary attacks are great. But with modern day slang and other such things this can take either very long or very short depending on your word list. Cracking a password with brute force is very long... You could spend up to a month with still no results with brute force.
______Google is a powerful tool______
If we know the user name of a target such as SarahK1212 (Example only) we could Google that and come up with a lot of results or few results. So long as you know how to read the information you have tons of information on them. Lets say we find her Myspace and its not on private. We now have her Full name , Her age, Friends, Location, Music, Interests, Blogs, Etc. If you find your targets Myspace you could crack her password in less then a day.
Also you find what site's she goes to like... Stickam, Myyearbook, Youtube, Twitter, And other social networking site's. Knowing how most sites are you get limited amount of attempts before either a image verification comes up or a run out of attempts thing. Knowing how people are as well she probably uses the same password for all websites. so all you have to do is switch from site to site till you crack her password.
______The Obvious______
There are Thousands of people that use bad passwords.
Password
N00b
letmein
admin
root
toor
lol
rofl
lmao
etc
so that would be the first thing to check then see if it is her lastname+age(or age of sign up) also with the first name to. then try the year if her age dose not work.
Kristan14
Sarah14
Sarah09
Kristan09
SarahKristan14
KristanSarah14
SarahKristan09
KristanSarah09
Then try that with initals or middle name
______Pets,School,Boyfreind/Girlfreind______
All this can usually be found in pictures people love taking pictures with pets and they usually supply the name
Fluffy
Then add things to it like persons last name
FluffyKristan
Even with the year
FluffyKristan09
School
BaronHigh
or maskot
BaronBoy
with year of grad or current year
Baronboy 2013
Baronboy 2009
Then try it with bf/gf name
EricKyle
EricKyle13
EricKyle09
______Other Tips______
1.Most people dont use spaces in there password so leave them out.
2.Try with proper caps then all lower then all upper.
3.It's not always the information I supplied up here you have to generate most passwords on your own.
4.Numbers are a part of passwords due to paranoia.
5.Its not likely you will find Admin passwords like this since you cant Google admin.
6.This method is longer then dictionary usually but much shorter then brute force.
7.Be patient you cant always get the password on guessing with just a day.
8.Write down what you tried so you dont forget.
9.Or you can write them down ahead of time and have a program attack for you. (much harder and longer sometimes dosent work for image validate)
10.Make sure to tinker with postioning of letters or l33t code some for those "hackers"/gamers.
Make sure you have a secure password such as
ASdf%8dk
*Sj3O9ud
Ajs83Sjn
UJ9t7Ehj
these are usually uncrackable with guessing inless faced with a experienced cracker
This is for educational purpose only. Dont blame me for incompetence.