My Password Cracking Brings All the Hashes to the Yard.

DerbyCon V - Unity

Presented by: Larry Pesce (haxorthematrix)
Date: Sunday September 27, 2015
Time: 12:30 - 13:20
Location: Track 2
Track: Fix Me

..and they’re like, it’s better than yours. Damn right it’s better than yours, but I can teach you, free of charge. Password cracking is serious business, from dictionaries, to word munging, to Amazon EC2 and massive GPU rigs. Yeah, that’s a lot of stuff! When I started cracking passwords, I knew there had to be a better way then just straight brute force; quite frankly, I never had a complex password crack over 8 characters finish even with some GPUs. I started asking friends, Googling and all I ever got was technical advice on how to run a tool, but never a methodology. It seemed the methodology was either a secret or they had about as much clue as I did; little. In this talk I’ll discuss the outcomes of all of my research AND the methodology for really effective password cracking that even my CFO will approve. I may not have all of the answers, but what answers I do have, I’m willing to share.

Larry Pesce


KhanFu - Mobile schedules for INFOSEC conferences.
Mobile interface | Alternate Formats