Prev: M.peg biss key finder
Next: encrypt in c# and decrypt in c++
From: rossum on 4 Oct 2006 10:23
On 3 Oct 2006 17:27:05 -0700, "Dave" <dave42972000(a)yahoo.com> wrote:

>Many thanks, this should get me off and running! Good point about the
>password checksum - it should speed things up considerably. It looks as
>if a brute force attack might actually be the best way to go, just hope
>for a weak password.
Another weakness in the code is that the password is put into lower
case: "DDDDD=DDDDD.toLowerCase();" which further eases the brute
force password search - no need to include capital letters. It might
be easier to run though a dictionary first. It is easy enough to try
the common o <-> 0; I <-> 1; s <-> $ substitutions at the same time.

>Also most web pages have certain words such as
><HEAD> on them, which helps.
or <head>

>The code limits the password to 20
>characters which helps as well. I don't have a three letter name, but
>oh well...
The TLA is not obligatory. On this side of the pond the one that we
know about has an XTLA: GCHQ.

rossum

First  |  Prev  | 
Pages: 1 2 3 4 5 6
Prev: M.peg biss key finder
Next: encrypt in c# and decrypt in c++