Professional Documents
Culture Documents
Password Cracking
Password Cracking
Techniques
Krishna Sharma
21072010
Overview
• Password Cracking is the process of recovering passwords
from data that have been stored in or transmitted by a
computer System
The purpose of password cracking might be:
1. Help a user to recover a forgotten password
2. Gain unauthorized access to a system
3. Preventive measurement of password strength
Types of Password Attacks
DICTIONARY ATTACKS
• These chains are not stored instead only the start and end text of chain is stored
which helps is saving memory.
• The name “Rainbow” in “rainbow table” comes from usage of different reduction
functions
• Rainbow table attacks work on the principle of
time-memory trade-off.
How to Prevent Rainbow Attacks
• Rainbow attacks can be preventing by adding Salt to the hash.
• A Salt is a random string that is appended to the value we want to
hash (the password) before the hash function is applied.
• The salt does not need to be secret. However, it must be
unpredictable and reasonable long.
• The password now turns into completely different hash values
depending on the salt, to still be able to use a rainbow table the
attacker would have to create one table for each possible salt value.
THANK YOU