There has been a lot of questions about bruteforcing lately. So let's just get it over with once and for all. There are softwares like Lophtcrack which implement this method for either recovering or cracking passwords.
Here you will know exactly what bruteforcing is??? By using bruteforce attack, you can crack or recover passwords.... So lets get started...
What is bruteforcing?
The word says everything itself, and it's pretty simple. It means that you try out all possible combinations of passwords until you find the real one, of course it doesn't only mean passwords, it can be other things as well, like usernames. Now a days people don't sit and actually try to guess passwords by hand. It would be so much faster to just have a program try out all the passwords now wouldn't it?
What's so good about it?
Well the good thing about it is that EVENTUALLY you will hit the right password. Let's say that you have packed a bunch of important files in a RAR archive and set a password on it, the downside is that you forgot your password for the archive. Now wouldn't it be good to have something that can try out all combinations of passwords for you as a last resort? This is where the positive part of a bruteforcer comes in.
What's so bad about it?
The downside of bruteforcing is pretty fatal for the idea itself. The huge downside is time. Imagine trying all the combos of a password. Even with a program that runs against a RAR archive on your computer, it would take time.
As an example, let's say you forgot your RAR archive password and has set a bruteforcer to crack it for you. You know the length was 6 letters so you set it to try out all the password combinations on 6 letters with A-Z 0-9 in the combo list.
Now, let's think logically. 36^6 = 2 176 782 336
Even with a computer, that's pretty many passwords, and thats just a length of 6 passwords, imagine a lentgh of 0-6, now 0-5 doesn't add much, but it makes a difference.
Now, let's say you want to bruteforce a random website, and many people have secure passwords with at least a length of 6-8 characters with a combo list of A-Z 0-9.
36^1 = 36
36^2 = 1 296
36^3 = 46 656
36^4 = 1 679 616
36^5 = 60 466 176
36^6 = 2 176 782 336
36^7 = 78 364 164 096
36^8 = 2 821 109 907 456
= 2 901 713 047 668
Now, imagine the bruteforcer sending ONE request PER password to try the login. And the server may be slow, and it may get slower when you try to login every second like that. Also, servers always log everything that happens, INCLUDING login attempts, this would fill the log pretty fast. And you would get caught the second you start. Most people ignore bruteforcing attempts and simply block it since it's so common.
Now, let's say that you try 1 000 000 passwords every second.
2 901 713 047 668 / 1 000 000 = 2 901 713.05 Seconds
2 901 713.05 / 60 = 48 361.8842 Minutes
48 361.8842 / 60 = 806.031403 Hours
806.031403 / 24 = 33.5846418 Days
so, 33 days with a constant speed of 1 000 000 passwords every second.
Now this is just theoretically speaking.
I mean, you could be lucky and hit the password on the first 1 000 000 list of passwords...
Enjoy HaCkInG....
Here you will know exactly what bruteforcing is??? By using bruteforce attack, you can crack or recover passwords.... So lets get started...
What is bruteforcing?
The word says everything itself, and it's pretty simple. It means that you try out all possible combinations of passwords until you find the real one, of course it doesn't only mean passwords, it can be other things as well, like usernames. Now a days people don't sit and actually try to guess passwords by hand. It would be so much faster to just have a program try out all the passwords now wouldn't it?
What's so good about it?
Well the good thing about it is that EVENTUALLY you will hit the right password. Let's say that you have packed a bunch of important files in a RAR archive and set a password on it, the downside is that you forgot your password for the archive. Now wouldn't it be good to have something that can try out all combinations of passwords for you as a last resort? This is where the positive part of a bruteforcer comes in.
What's so bad about it?
The downside of bruteforcing is pretty fatal for the idea itself. The huge downside is time. Imagine trying all the combos of a password. Even with a program that runs against a RAR archive on your computer, it would take time.
As an example, let's say you forgot your RAR archive password and has set a bruteforcer to crack it for you. You know the length was 6 letters so you set it to try out all the password combinations on 6 letters with A-Z 0-9 in the combo list.
Now, let's think logically. 36^6 = 2 176 782 336
Even with a computer, that's pretty many passwords, and thats just a length of 6 passwords, imagine a lentgh of 0-6, now 0-5 doesn't add much, but it makes a difference.
Now, let's say you want to bruteforce a random website, and many people have secure passwords with at least a length of 6-8 characters with a combo list of A-Z 0-9.
36^1 = 36
36^2 = 1 296
36^3 = 46 656
36^4 = 1 679 616
36^5 = 60 466 176
36^6 = 2 176 782 336
36^7 = 78 364 164 096
36^8 = 2 821 109 907 456
= 2 901 713 047 668
Now, imagine the bruteforcer sending ONE request PER password to try the login. And the server may be slow, and it may get slower when you try to login every second like that. Also, servers always log everything that happens, INCLUDING login attempts, this would fill the log pretty fast. And you would get caught the second you start. Most people ignore bruteforcing attempts and simply block it since it's so common.
Now, let's say that you try 1 000 000 passwords every second.
2 901 713 047 668 / 1 000 000 = 2 901 713.05 Seconds
2 901 713.05 / 60 = 48 361.8842 Minutes
48 361.8842 / 60 = 806.031403 Hours
806.031403 / 24 = 33.5846418 Days
so, 33 days with a constant speed of 1 000 000 passwords every second.
Now this is just theoretically speaking.
I mean, you could be lucky and hit the password on the first 1 000 000 list of passwords...
Enjoy HaCkInG....
Filed Under: HACKING SOFTWARES , REMOTE HACKING
If you enjoyed this post and wish to be informed whenever a new post is published, then make sure you subscribe to my regular Email Updates.
Subscribe Now!
Do you need to know what your child is doing on the computer? Do you want to know what your loved ones or spouse or kids are doing on the computer? Do you need to monitor what your employees are doing during work hours? Are they working or playing?
Winspy Keylogger
is intended to help you in these kind of situations. It can show you exactly what is being done on the computer at any time.
Click Here To Download Winspy Keylogger
