11-23-2011, 01:25 PM
Thank you very much Kgx Pnqvhm, great links and thanks for sharing them !
I really hope this doesn’t start an argument about which type of word list to use, this was not my intention at all. I thank you both for your input and I understand both sides of this.
Atoms idea to use genuine found lists makes sense and I do this sort of attack. Adding further rules and especially his special method of the fingerprint attack is very effective.
However as Kgx Pnqvhm said he was only helping / humouring me by replying to my question about word lists. As I am relatively new to this I was surprised at the quality of the word lists being shared around and Kgx Pnqvhm was just helping me make my own.
I do fully understand that my home made lists may not be as effective as real password lists but they would at least be clean and properly formatted in an attempt to avoid any duplication or wasted password candidates.
I am only playing with this sort of thing as a hobby and I will enjoy modifying these “clean†lists in an attempt to test my skill at predicting what people may use. Applying rules to these lists will add another layer all together.
I think this is a case where an amateur such as myself, is getting involved between professionals and I shouldn’t do that.
So I apologise if this has caused any problems. Thank you both very much for your help.
PS…
Still trying to work out what “Kgx Pnqvhm†is !!!
I really hope this doesn’t start an argument about which type of word list to use, this was not my intention at all. I thank you both for your input and I understand both sides of this.
Atoms idea to use genuine found lists makes sense and I do this sort of attack. Adding further rules and especially his special method of the fingerprint attack is very effective.
However as Kgx Pnqvhm said he was only helping / humouring me by replying to my question about word lists. As I am relatively new to this I was surprised at the quality of the word lists being shared around and Kgx Pnqvhm was just helping me make my own.
I do fully understand that my home made lists may not be as effective as real password lists but they would at least be clean and properly formatted in an attempt to avoid any duplication or wasted password candidates.
I am only playing with this sort of thing as a hobby and I will enjoy modifying these “clean†lists in an attempt to test my skill at predicting what people may use. Applying rules to these lists will add another layer all together.
I think this is a case where an amateur such as myself, is getting involved between professionals and I shouldn’t do that.
So I apologise if this has caused any problems. Thank you both very much for your help.
PS…
Still trying to work out what “Kgx Pnqvhm†is !!!