Team Member:
- Hayden McNally
- Ukamaka Udeaja
- Keerthana Chockalingam
- Coleman Olofua
- Michael Boansi Donkor
- Abdul Salawu
We created a website that gives you a deep dive into passwords and password crackers mainly hashcat and John the Ripper
Website link : https://keerthana200219.wixstudio.io/passwordcrackers
Walkthrough Video: https://youtu.be/O8iCXXlY8Ks
Questions 1:
What are 4 of our Best Password practices suggestions? With the practices include why this practice is important and how it adds security.
Question 2:
You want to check the security of your users’ passwords and want to try cracking them with hashcat what mode and options would likely crack the most passwords? And why that mode would crack more than the other modes?
Question 3:
What type of hashing algorithms are John the Ripper effective at cracking and why?
Great website and knowledge. I did not know the Hashcat was able to crack Kerberos. In response to question (2), it is interesting to know knowing the company password policy can be used in Hashcat mode 3 where masking can be used to crack passwords. Also, attack modes 6,7 which is a combination of modes 0 and 3. The bright side from my end though, using a foreign language in the password can be very tricky. Great tools. Thanks for sharing.
Amazing read! Engaging and refreshing. It’s fascinating to find out Hashcat can break NTLM and Kerberos. Now to answer your question 3 John the Ripper is effective at cracking MD5, DES, or SHA-1, because it uses dictionary to predict similar password and then it can calculate the hash value of the predicted password and then match the hashvalue.