Home / Series / Chaos Communication Congress / Aired Order / Season 31 / Episode 115

UNHash - Methods for better password cracking (#5966)

Speaker: Tonimir Kisasondi This talk will show a new method for password cracking called UNHash. UNHash as a tool uses rulefiles that are something in between of a DSL (Domain specific language) and a python script to describe the password cracking process. This talk will show how to mix web service abuse, knowledge of human nature and data mining to enable far better attacks against passwords. We will be focusing on a few features: cracking default passwords on network systems with minimal effort, testing for embedded backdoors and offline attacks by data mining and modeling about 33 million user account to gain insight in how users choose their passwords and how can we use that knowledge to speed up password cracking for 20% more gain for non pseudorandom passwords.

English
  • Originally Aired December 29, 2014
  • Runtime 60 minutes
  • Created January 3, 2015 by
    Administrator admin
  • Modified January 3, 2015 by
    Administrator admin