UNIX Password Security: A discussion of the importance of well-chosen passwords, and how passwords are cracked
c8678acf4db6fbbcf4059305c7eb88ac5074fcae1a7fcb777e91c3266724a7a5Passwords 2015 has announced its Call For Papers. It will take place December 7th through the 9th, 2015 at the University of Cambridge, United Kingdom.
ca17f5045e83a93191564e0ddaa9800deae4ebbe38a38abddbe4598d8a79f7e9The PASSWORDS'14 Norway Call For Papers has been announced. It will take place December 8th through the 10th, 2014 in Trondheim, Norway.
a270ae5136e49e09f525068c54f96fe43d036add98f294ae63d3bfe720c708faThe Passwords^14 Call For Papers has been announced. This year they will be teaming up with BsidesLV and it will be held August 5th and 6th, 2014 in Las Vegas, NV, USA.
0e6de150d688bebe16bd35e0c270eef72a5d368e42d96e788440cfd04e133119The Passwords^13 Call For Submissions has been announced. It will be held December 2nd through the 3rd, 2013.
3390c568b1f38f866637d47d3dd6eb69335f65c39bc82e9f2e71ecbaa112e9e2Whitepaper called Password Secrets of Popular Windows Applications. Written in Persian.
2f2d636dd3b0d33b256e0011a95a9894ba4f4cdb485fd3aa852c13d9dd37e586The Passwords^12 Call For Presentations has been announced. It will be held at the University of Oslo (Norway) December 3rd through the 5th, 2012.
b22177219b2df9e74a0cd122fe1ebfc286c7578564e0f26ab3dbfd71aab4ac78This is a perl script that generates a list of passwords from user-supplied input on the command line. It enables a tester the ability to create various permutations of a given password for testing.
1eb229f6f284423c21b8d973d32dc10130512598abb5cd7062d67dedcbc04955The PASSWORDS^11 Call For Papers has been announced. It will be held at the University in Bergen (Norway) from June 7th through the 8th, 2011.
65413d76a6624ad26c578a7d5c90e1ad2dc2905ed2048322c675737b75346a5cBrief whitepaper touching on how to use Wireshark for password sniffing. Written in Arabic.
7eacf1df077b891bea39f52dc68658cd50ef625393d0cb2f6198e31cb0b0c56dWholeHogSoftware Password Protect suffers from an insecure cookie handling vulnerability.
879dcb888bd7acc1a852549d9d2bc10d3e78da75248890919d6c01b2efb8061cBrief login form password theft tutorial showing how to backdoor php code once access has been gained to a system in order to not have to crack hashes.
efa9a5d70d121d1cd4ee5fd03891f3e0b9ec2ada0da46b4dc78a39dbc6a542b5PasswordSafe 3.0 has a weak random number generator.
954e83279ee35055656c5f3c8533f0e6ef3820b4533a07b2d5c91e78d3510be2A design flaw in PasswordSafe allows for quicker brute force cracking attempts.
5cba441313e89b00df5185e559ebc1f6aceaf29a9e02a60424f0b21d89a11067Password article that discusses common attacks and possible solutions.
3538e96f4db235417b69d3fe2694ab99b4e8ae7672633c45c99c2eb10fb74699UNIX password security, and how long it would take
4954e1a4f63572c0f8291099f0ca25504041d8e8e4e6309a5dce876ec83a6f6aDefault passwords for VAX/VMS, DEC-10, TOPS 10,
b78a809d7aa0681bebae4753b22f49f06d1cc29de774788f53d66f4668e95f83The following is a utility I wrote to quickly convert the unix style passwords in a Serv-U.ini file into standard unix password style for cracking. Serv-U Ftp uses standard unix password encryption which can be cracked with most unix password crackers. I have included a java class file and a windows executable.
bd53a0f1da06b52cfa763dd0a9ea301fa8b7ce85645ce817d57a0ea4143f1bc0Quick Password is a program written in Python that generates passwords of user specified lengths which are easy to remember and pronounce. The passwords are reasonably secure and can easily be remembered because they are composed of dictionary words that are pronounceable joined by special characters. The program generates passwords of between 2 and 10 words each between 3 and 10 characters in length separated by non-alpha characters. It is usable as a web application from the home page if you do not wish to download it.
d6dabca6d18785695d9795744ba0c6fd12a1e673dfd26a9be02d799b1feac4c9UNIX Password Security - Ten Years Later: A reexamination of the UNIX password algorithm after ten years of advances in software and hardware
93aafb58b4907d97438db4c8dfea03f1de784857ae6b9580f04bf9c47c4c552fA real simple password generator generating mixed upper and lowercase letters and numbers.
df65990c5d9286dd97eb763e639bbf8379e15b4a7063cd7c99f918626b5fdd37ASMCrack v2.56 - ASMCrack is a unix password security tool. It checks the password file by trying whether a given word matches an encrypted password that was within the password file. To do so it uses very speed optimized 386 assembly routines, with pentium alignment and command order optimisations. ASMCrack supports five cracking modes: creating words by the login/geco field of the pwd file, and try these pwds only on the corresponding user, trying words, that are read from a dictionary file, creating words by Brute Force (e.g. aaa aab aac aad aae aaf aag ... zzy zzz), creating words by Smart Force (this is a statistic optimized modification of Brute Force, that is about 15 times more effective when cracking (pronouncable) pwds that only consist of letters), creating words by combining a certain number of syllables, that have been extracted from a dictionary file. ASMCrack supports parallel processing and clustered computing environments for increased cracking speed. This is the first public release of this program and it rivals John the Ripper in performance and speed.
478efd1fd3515f29e70885e30573b34058c9a105c54b54754fd1def43b72bd0b
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed