Presentation is loading. Please wait.

Presentation is loading. Please wait.

Password Cracking COEN 252 Computer Forensics. Social Engineering Perps trick Law enforcement, private investigators can ask. Look for clues: Passwords.

Published byAmberly Hutchinson Modified over 8 years ago

Similar presentations

Presentation on theme: "Password Cracking COEN 252 Computer Forensics. Social Engineering Perps trick Law enforcement, private investigators can ask. Look for clues: Passwords."— Presentation transcript:

1 Password Cracking COEN 252 Computer Forensics

2 Social Engineering Perps trick Law enforcement, private investigators can ask. Look for clues: Passwords frequently use SSN, names of boyfriend, girlfriend, dog, sled, …

3

4 Dictionary Attacks Passwords need to be memorizable. Most Passwords based on actual words. Dictionary attacks uses a dictionary: Try all words in dictionary. Try all words in dictionary with slight changes. Typically very fast.

5 Brute Force Just try out all combinations. 256 8 possibilities for a UNIX password. But only if all letters are equally likely. Not feasible on a single machine. But possibly in a P2P system. Using Seti@home technology.

6 Keystroke logging / sniffing Surveillance of suspect can yield passwords. Keystroke loggers can be set up to automatically reveal typed in passwords. Same for network sniffers.

7 Default Passwords Many applications come with a default password. VMS used to have a default super-user password. Often, the default password is the same as the default user name. In principle, the sys-ad changes the default password. Recently, applications are no longer shipped with default passwords.

8 Bios Password Stored in CMOS Remove power from CMOS and CMOS is reset. Looses valuable forensic data such as the system clock. Some BIOS can be programmatically cleaned. Looses valuable forensic data such as the system clock.

9 Windows 9x Windows 9x stores the login password in.pwl file in the c:\windows directory in encrypted form. Obtain the password from the file. Use an offline password cracker that attacks the weak encryption.

10 Windows 9x Windows screen saver password is stored in user.dat file in c:\windows. Password is in simple ASCII encryption. The screen saver password is very often the system password.

11 Windows NT and up Unix Only hash of password is stored. Computationally impossible to calculate password from the hash. Can use the hash for a dictionary or brute force attack.

12 Windows NT and Up Some applications need administrator’s password Passwords are stored in a protected area of the registry Local Security Authority Can be dumped

13 Various Applications Some applications store the password in clear text in a hidden location. Registry in Windows. Some file attached to the application. Or using easily breakable encryption of password in known place.

14 Multiple Passwords Since few users can remember many passwords, any password for a given application might also unlock other passwords.

Download ppt "Password Cracking COEN 252 Computer Forensics. Social Engineering Perps trick Law enforcement, private investigators can ask. Look for clues: Passwords."

Similar presentations

Module XVII Novell Hacking

Module XVII Novell Hacking
Point3r$. Password Introduction Passwords are a key part of any security system : –Work or Personal Strong passwords make your personal and work.

Point3r$. Password Introduction Passwords are a key part of any security system : –Work or Personal Strong passwords make your personal and work.
Password Cracking Lesson 10. Why crack passwords?

Password Cracking Lesson 10. Why crack passwords?
The Cain Tool Presented by: Sagar Chivate CS 685F.

The Cain Tool Presented by: Sagar Chivate CS 685F.
COEN 350: Network Security Authentication. Between human and machine Between machine and machine.

COEN 350: Network Security Authentication. Between human and machine Between machine and machine.
CS426Fall 2010/Lecture 81 Computer Security CS 426 Lecture 8 User Authentication.

CS426Fall 2010/Lecture 81 Computer Security CS 426 Lecture 8 User Authentication.
Section 3.2: Operating Systems Security

Section 3.2: Operating Systems Security
CS 483 – SD SECTION BY DR. DANIYAL ALGHAZZAWI (7) AUTHENTICATION.

CS 483 – SD SECTION BY DR. DANIYAL ALGHAZZAWI (7) AUTHENTICATION.
1 Chapter 11: Authentication Basics Passwords. 2 Establishing Identity Authentication: binding of identity to subject One or more of the following –What.

1 Chapter 11: Authentication Basics Passwords. 2 Establishing Identity Authentication: binding of identity to subject One or more of the following –What.
Chapter 3 Passwords Principals Authenticate to systems.

Chapter 3 Passwords Principals Authenticate to systems.
Lesson 9-Securing a Network. Overview Identifying threats to the network security. Planning a secure network.

Lesson 9-Securing a Network. Overview Identifying threats to the network security. Planning a secure network.
7-Access Control Fundamentals Dr. John P. Abraham Professor UTPA.

7-Access Control Fundamentals Dr. John P. Abraham Professor UTPA.
Passwords, Encryption Forensic Tools

Passwords, Encryption Forensic Tools
Nothing is Safe 1. Overview  Why Passwords?  Current Events  Password Security & Cracking  Tools  Demonstrations Linux GPU Windows  Conclusions.

Nothing is Safe 1. Overview  Why Passwords?  Current Events  Password Security & Cracking  Tools  Demonstrations Linux GPU Windows  Conclusions.
MS systems use one of the following: LanManager Hash (LM) LanManager Hash (LM) NT LanManager (NTLM) NT LanManager (NTLM) Cached passwords Cached passwords.

MS systems use one of the following: LanManager Hash (LM) LanManager Hash (LM) NT LanManager (NTLM) NT LanManager (NTLM) Cached passwords Cached passwords.
GROUP POLICY An overview of Microsoft Windows Group Policy.

GROUP POLICY An overview of Microsoft Windows Group Policy.
Windows This presentation is an amalgam of presentations by Mark Michael, Randy Marchany and Ed Skoudis. I have edited and added material. Dr. Stephen.

Windows This presentation is an amalgam of presentations by Mark Michael, Randy Marchany and Ed Skoudis. I have edited and added material. Dr. Stephen.
VPN AND SECURITY FLAWS Rajesh Perumal Clemson University.

VPN AND SECURITY FLAWS Rajesh Perumal Clemson University.
IS 302: Information Security and Trust Week 7: User Authentication (part I) 2012.

IS 302: Information Security and Trust Week 7: User Authentication (part I) 2012.
The Truth About Protecting Passwords COEN 150: Intro to Information Security Mary Le Carol Reiley.

The Truth About Protecting Passwords COEN 150: Intro to Information Security Mary Le Carol Reiley.

Similar presentations

Ads by Google