06-13-2015, 11:29 AM
For files specifically I can think of a few strategies I would try first, especially depending on the content of the file and/or origin. But I would use the wiki wordlist, and then perhaps try to scrape linkedin or some type of company name list.
I would test against base words, phrases (spaces removed), numbers appended, such common stuff like "123" or dates like year, (like YY or YYYY or perhaps MMYY/YY or even MMDDYY/YY).
It's one of those things where you need to get enough PW protected files in a format that is HC friendly (high hash per second) to really get a good enough sample to dial in rules. This is the problem I'm having with trying to research WPA tendancies is that I don't have enough hashes to test and even getting almost 300k/s, which is great for WPA on a single rig, isn't anything like MD5 which is somewhere around 80X faster is memory serves.
I would test against base words, phrases (spaces removed), numbers appended, such common stuff like "123" or dates like year, (like YY or YYYY or perhaps MMYY/YY or even MMDDYY/YY).
It's one of those things where you need to get enough PW protected files in a format that is HC friendly (high hash per second) to really get a good enough sample to dial in rules. This is the problem I'm having with trying to research WPA tendancies is that I don't have enough hashes to test and even getting almost 300k/s, which is great for WPA on a single rig, isn't anything like MD5 which is somewhere around 80X faster is memory serves.