Expander / fingerprint attack
#3
I think I'm beginning to understand why the 4 limit. I tried to combinator my initial (already uniqued) dictionary with itself. I stopped it at 281 Gigs. Even stripping out all the 4 characters from the initial and combinating that with itself (so 6 max length), I stopped it at 27 Gigs. (Those numbers are before attempting to unique.)

I guess it's time to try editing the source to 5 and re-compiling, but I suspect the resulting file will be so huge as to be unworkable.

In the meantime, I tried using my initial 4-char max expander dictionary with an English unabridged dictionary (expander being the suffix/right side) combo attack, no rules, and that -- on my picked over dictionary -- still gave me an average of  about 1400 hashs cracked/minute. Not huge, but it is on an already picked over hash list, so I'd call that respectable since it only took about 11 minutes to run. Plus I got a bunch of 15+ character passwords.

=== Update ===

After editing and recompiling to a max of 5 characters, the expander program, after unique-ing, gave me a dictionary of about 40MB. Running the combo attack on my system will take a day with that dictionary. I thought about eliminating all the 3 or less character patterns since I already ran the 4 char dictionary, but then that only took 27 minutes.

As a quick sanity test, I let the 5 character (not eliminating the < 3) for about 5 minutes and I did get some new < 8 passwords cracked. That makes sense as I have 5 character patterns to combine with 3 or less that I didn't have before, so it would try some new passwords.

On my rig, I'm running it now and getting 1-2 hashes (SHA1) cracked per second on my already worked over hashlist. Not great, but not horrible either considering only the harder hashes are left.

Still, it looks like the current upper limit of a fingerprint attack is 10 characters. It's just not workable higher than that.


Messages In This Thread
Expander / fingerprint attack - by rsberzerker - 08-12-2017, 03:44 AM
RE: Expander / fingerprint attack - by epixoip - 08-12-2017, 09:21 AM
RE: Expander / fingerprint attack - by rsberzerker - 08-12-2017, 04:38 PM