Passwords13 Smarter Password Cracking With Pack
Passwords13 Smarter Password Cracking With Pack
Passwords13 Smarter Password Cracking With Pack
Peter Kacherginsky
IGHASHGPU
Downloaded 2500
uncracked passwords
Brute-force attack
24 Hours
300 passwords
24 Hours
Smarter approach
to password
cracking
300 passwords
Psychology
Technology
Security
I like
cracking
Max length
8 characters
1 Special, 1
Digit, 1 Upper
Characters
Cr@cker1
https://thesprawl.org/projects/pack
http://github.com/iphelix/PACK
Source
Date
Count
Cracked
Notes
PhpBB**
January 2009
184,389
97%*
MD5 Encrypted
RockYou**
December 2009
14,344,391
100%
Clear-text
Gawker***
December 2010
1,084,394
92%*
DES Encrypted
Stratfor***
December 2011
804,041
93%*
MD5 Encrypted
LinkedIn***
June 2012
5,374,200
94%*
SHA1 Encrypted
eHarmony***
June 2012
1,475,738
97%*
MD5 Encrypted
Gamigo***
July 2012
6,306,186
90%*
MD5 Encrypted
Note:
* Important: all statistics will be generated relative to the percentage cracked
** http://www.skullsecurity.org/wiki/index.php/Passwords
*** http://www.adeptus-mechanicus.com/codex/hashpass/hashpass.php
oclHashcat-plus
Hash Type
Performance*
NTLM
7501M c/s
MD5
5470M c/s
SHA1
2136M c/s
SHA256
1012M c/s
SHA512
76M c/s
* http://hashcat.net/oclhashcat-plus/
* http://golubev.com/gpuest.htm
80.0%
30.0%
31.0%
0.0%
0.0%
0.0%
0.0%
2.0%
1.0%
0.0%
RockYou
0.0%
4.0%
0.0%
2.0%
3.0%
1.0%
4.0%
22.0%
10.0%
17.0%
6.0%
17.0%
13.0%
eHarmony
3.0%
17.0%
11.0%
14.0%
6.0%
19.0%
17.0%
63.0%
20.0%
2.0%
10.0%
17.0%
0.0%
12.0%
14.0%
15.0%
Gamigo
20.0%
17.0%
Gawker
1.0%
6.0%
12.0%
0.0%
44.0%
13.0%
14.0%
0.0%
2.0%
6.0%
0.0%
4.0%
6.0%
6.0%
0.0%
1.0%
4.0%
0.0%
2.0%
4.0%
3.0%
0.0%
2.0%
1.0%
2.0%
0.0%
1.0%
0.0%
1.0%
10
11
12
13
14
15
PhpBB
Stratfor
80.0%
30.0%
31.0%
0.0%
0.0%
0.0%
0.0%
2.0%
1.0%
0.0%
RockYou
0.0%
4.0%
0.0%
2.0%
3.0%
1.0%
4.0%
22.0%
10.0%
17.0%
6.0%
17.0%
13.0%
eHarmony
3.0%
17.0%
11.0%
14.0%
6.0%
19.0%
17.0%
63.0%
20.0%
2.0%
10.0%
17.0%
0.0%
12.0%
14.0%
15.0%
Gamigo
20.0%
17.0%
Gawker
1.0%
6.0%
12.0%
0.0%
44.0%
13.0%
14.0%
0.0%
2.0%
6.0%
0.0%
4.0%
6.0%
6.0%
0.0%
1.0%
4.0%
0.0%
2.0%
4.0%
3.0%
0.0%
2.0%
1.0%
2.0%
0.0%
1.0%
0.0%
1.0%
10
11
12
13
14
15
PhpBB
Stratfor
1 to 8
1 to 10
0.0%
10.0%
Stratfor
20.0%
PhpBB
30.0%
40.0%
50.0%
Gawker
60.0%
Gamigo
70.0%
80.0%
eHarmony
90.0%
RockYou
100.0%
65.0%
60.0%
42.0% 43.0%
42.0%
37.0%
25.0%
12.0%
0.0%
0.0%
RockYou
16.0%
5.0%
4.0%
1.0%
eHarmony
12.0%
3.0%
0.0%
0.0%
0.0%
Gamigo
3.0%
2.0%
0.0%
Gawker
2.0%
0.0%
0.0%
0.0%
2.0%0.0%
0.0%
PhpBB
3.0%
1.0%
0.0%2.0%
Stratfor
1.0%0.0%
0.0%
65.0%
60.0%
42.0% 43.0%
42.0%
37.0%
25.0%
12.0%
0.0%
0.0%
RockYou
16.0%
5.0%
4.0%
1.0%
eHarmony
12.0%
3.0%
0.0%
0.0%
0.0%
Gamigo
3.0%
2.0%
0.0%
Gawker
2.0%
0.0%
0.0%
0.0%
2.0%0.0%
0.0%
PhpBB
3.0%
1.0%
0.0%2.0%
Stratfor
1.0%0.0%
0.0%
76 Days
BruteForce
(All-character space)
47 Minutes
RockYou Pattern
(loweralphanumeric)
0%
10%
20%
30%
40%
50%
60%
70%
80%
90%
100%
Analysis filters
8:
6:
7:
5:
4:
3:
2:
1:
62%
18%
14%
02%
01%
00%
00%
00%
(612522)
(183307)
(146152)
(26438)
(15088)
(2497)
(308)
(113)
1 to 8
eHarmony
1 to 10
eHarmony
0.0%
10.0%
Stratfor
20.0%
PhpBB
30.0%
40.0%
50.0%
Gawker
60.0%
Gamigo
70.0%
eHarmony
80.0%
90.0%
RockYou
100.0%
6: 84% (254004)
5: 15% (46821)
1898 Years
BruteForce
42 Days
Targetted Pattern
(upperalphanumeric)
RockYou Pattern
(loweralphanumeric)
0.0%
10.0%
20.0%
30.0%
40.0%
50.0%
60.0%
70.0%
80.0%
90.0%
100.0%
P a s swo r d 1 !
?u
?l
?l
?l
?l
?l
?l
?l
?d
?s
25.0%
20.0%
15.0%
10.0%
5.0%
0.0%
RockYou
Gamigo
Gawker
PhpBB
Stratfor
Complexity (keyspace):
208827064576
?u
?l
?l
?l
Length: 8
?l
?l
?l
?l
Occurrence: 17097
total runtime
--occurrence
--optindex
--complexity
100.00%
90.00%
80.00%
70.00%
60.00%
50.00%
40.00%
30.00%
20.00%
10.00%
0.00%
RockYou
Gamigo
Gawker
PhpBB
Stratfor
eHarmony
* 1,000,000,000 keys/sec
--occurrence
--optindex
--complexity
18000
16000
14000
12000
10000
8000
6000
4000
2000
0
RockYou
Gamigo
Gawker
PhpBB
Stratfor
eHarmony
* 1,000,000,000 keys/sec
LINKEDIN
100.00%
RockYou OptIndex
GAMIGO
LinkedIn OptIndex
100.00%
90.00%
90.00%
80.00%
80.00%
70.00%
70.00%
60.00%
60.00%
50.00%
50.00%
40.00%
40.00%
30.00%
30.00%
20.00%
20.00%
10.00%
10.00%
0.00%
0.00%
1
15
30
1 Hour 6 Hours 12 Hours 1 Day
Minute Minutes Minutes
5 Days 30 Days
RockYou OptIndex
1 Minute
Gamigo OptIndex
15
30
1 Hour 6 Hours 12 Hours 1 Day
Minutes Minutes
5 Days 30 Days
PHPBB
100.00%
RockYou OptIndex
EHARMONY
PHPBB OptIndex
RockYou OptIndex
eHarmony OptIndex
100.00%
90.00%
90.00%
80.00%
80.00%
70.00%
70.00%
60.00%
60.00%
50.00%
50.00%
40.00%
40.00%
30.00%
30.00%
20.00%
20.00%
10.00%
10.00%
0.00%
0.00%
1
15
30
1 Hour 6 Hours
12
Minute Minutes Minutes
Hours
1 Day
5 Days 30 Days
1 Minute
15
30
1 Hour 6 Hours 12 Hours 1 Day
Minutes Minutes
5 Days 30 Days
STRATFOR
RockYou OptIndex
100.00%
Stratfor OptIndex
90.00%
80.00%
70.00%
60.00%
50.00%
40.00%
30.00%
20.00%
10.00%
0.00%
1 Minute
15 Minutes 30 Minutes
1 Hour
6 Hours
12 Hours
1 Day
5 Days
30 Days
60 Days
120 Days
1 Year
8 CHARACTER PASSWORDS
Non-Compliant
38%
Only need to
target this.
Compliant
62%
76 DAYS
Non-Compliant
41 days*
Compliant
35 days*
* 1,000,000,000 keys/sec
$ python
policygen.py
34%
23%
22%
11%
02%
(2417)
(1613)
(1596)
(825)
(199)
User selected
passwords
Randomly generated
passwords
STRATFOR
RockYou OptIndex
Stratfor OptIndex
Stratfor Policy
RockYou Complexity
100.00%
90.00%
80.00%
70.00%
60.00%
50.00%
40.00%
30.00%
20.00%
10.00%
0.00%
1 Minute
15
30
1 Hour 6 Hours 12 Hours 1 Day
Minutes Minutes
p$$w0rAd123
Replace all
instances of s
with $
Based on the
dictionary word
password
Insert A
p$$w0rAd123
Delete second
character
Substitute o
with 0
Append 123
Passwords
Words and
Rules
Apply
other rules
password
remix
p$$w0rAd123
D1 ss$ so0
i6A $1 $2 $3
other words
Reverse
Source
Word(s)
Levenshtein
Rule(s)
Hashcat
Rule(s)
Profit!
Source
Word(s)
Source
Word(s)
Source
Word(s)
p4ssw0rd =>
password Edit distance 2
Pissaro
Edit distance 5
assured
Edit distance 5
Levenshtein
Rule(s)
p
p
4
s
s
w
0
r
d
0
p
4
s
s
w
0
r
d
p
1
a
2
s
3
s
4
w
5
o
6
r
7
d
8
p
4
s
s
w
0
r
d
0
1
p
1
0
a
2
1
s
3
2
s
4
3
w
5
4
o
6
5
r
7
6
d
8
7
p
4
s
s
w
0
r
d
0
1
2
p
1
0
1
a
2
1
1
s
3
2
2
s
4
3
3
w
5
4
4
o
6
5
5
r
7
6
6
d
8
7
7
p
4
s
s
w
0
r
d
0
1
2
3
4
5
6
7
8
p
1
0
1
2
3
4
5
6
7
a
2
1
1
2
3
4
5
6
7
s
3
2
2
1
2
3
4
5
6
s
4
3
3
2
1
2
3
4
5
w
5
4
4
3
2
1
2
3
4
o
6
5
5
4
3
2
2
3
4
r
7
6
6
5
4
3
3
2
3
d
8
7
7
6
5
4
4
3
2
Insertion
Same or Substitution
Deletion
p
4
s
s
w
0
r
d
0
1
2
3
4
5
6
7
8
p
1
0
1
2
3
4
5
6
7
a
2
1
1
2
3
4
5
6
7
s
3
2
2
1
2
3
4
5
6
s
4
3
3
2
1
2
3
4
5
w
5
4
4
3
2
1
2
3
4
o
6
5
5
4
3
2
2
3
4
r
7
6
6
5
4
3
3
2
3
d
8
7
7
6
5
4
4
3
2
p
4
s
s
w
0
r
d
0
1
2
3
4
5
6
7
8
p
1
0
1
2
3
4
5
6
7
a
2
1
1
2
3
4
5
6
7
s
3
2
2
1
2
3
4
5
6
s
4
3
3
2
1
2
3
4
5
w
5
4
4
3
2
1
2
3
4
o
6
5
5
4
3
2
2
3
4
r
7
6
6
5
4
3
3
2
3
d
8
7
7
6
5
4
4
3
2
p
4
s
s
w
0
r
d
0
1
2
3
4
5
6
7
8
p
1
0
1
2
3
4
5
6
7
a
2
1
1
2
3
4
5
6
7
s
3
2
2
1
2
3
4
5
6
s
4
3
3
2
1
2
3
4
5
w
5
4
4
3
2
1
2
3
4
o
6
5
5
4
3
2
2
3
4
r
7
6
6
5
4
3
3
2
3
d
8
7
7
6
5
4
4
3
2
p
4
s
s
w
0
r
d
0
1
2
3
4
5
6
7
8
p
1
0
1
2
3
4
5
6
7
a
2
1
1
2
3
4
5
6
7
s
3
2
2
1
2
3
4
5
6
s
4
3
3
2
1
2
3
4
5
w
5
4
4
3
2
1
2
3
4
o
6
5
5
4
3
2
2
3
4
r
7
6
6
5
4
3
3
2
3
d
8
7
7
6
5
4
4
3
2
p
s
s
w
0
r
d
1
0
1
2
3
4
5
6
7
8
p
1
0
1
2
3
4
5
6
7
a
2
1
1
2
3
4
5
6
7
s
3
2
1
1
2
3
4
5
6
s
4
3
2
1
2
3
4
5
6
w
5
4
3
2
1
2
3
4
5
o
6
5
4
3
2
2
3
4
5
r
7
6
5
4
3
3
2
3
4
d
8
7
6
5
4
4
3
2
3
p
s
s
w
0
r
d
1
0
1
2
3
4
5
6
7
8
p
1
0
1
2
3
4
5
6
7
a
2
1
1
2
3
4
5
6
7
s
3
2
1
1
2
3
4
5
6
s
4
3
2
1
2
3
4
5
6
w
5
4
3
2
1
2
3
4
5
o
6
5
4
3
2
2
3
4
5
r
7
6
5
4
3
3
2
3
4
d
8
7
6
5
4
4
3
2
3
Hashcat
Rule(s)
Delete a
D1
Substitute o
o40
Insert 1
i71
Levenshtein OP
(insert,i,j) where i is at the end of the word.
(insert,i,j) where i is at the beginning of the word.
(delete,i,j) where i is at the end of the word.
(replace,i,j) where i and i+1 were swapped.
(replace,i,j) where i and i+1 were swapped where i at the beginning of the word
(replace,i,j) where i and i+1 were swapped where i is at the end of the word
Rule
$c
^c
]
*XY
k
*XY
TN
Description
Append character to end.
Prepend character to end.
Delete last character.
Swap character X with Y.
Swap the first two characters.
Swap the last two characters.
Toggle the case of characters at
position N.
sXY
+N
LN
Hashcat
Rule(s)
D1
Substitute o
so0
Insert 1
$1
Hashcat
Rule(s)
[*]
[+]
[+]
[+]
[+]
[+]
[+]
[+]
[+]
[+]
[+]
Source
Top Rules
RockYou*
:
$1
r
$2
$1 $2 $3
$1 $2
$3
$7
^1
$1 $3
Source
Top Rules
Source
Top Rules
MySpace
$1
:
$2
$!
$3
$1 $2 $3
l $1
$7
$1 $2
$5
Top Rules
:
T0
$1
]
$2
$7
l $1
$1 $2 $3
$1 $2
$4
USING EXAMPLE.DICT
best64
d3ad0ne
generated
generated 1000000
Rockyou 1000000
T0Xlc
2000000
1800000
1600000
1400000
1200000
1000000
800000
600000
400000
200000
0
0
60
120
180
240
300
360
420
480
540
600
660
721
781
841
901
961
1021
1081
1141
1201
1262
USING WIKIPEDIA.DICT
best64
d3ad0ne
generated
Generated 1000000
Rockyou 1000000
T0Xlc
1400000
1200000
1000000
800000
600000
400000
200000
0
0
120 240 360 480 600 720 840 961 1081 1201 1321 1441 1561 1681 1802 1922 2042 2162 2282 2402 2523 2643 2763 2883 3003 3123 3243 3364 3484 3604
$ oclHashcat-plus64.bin gamigo.hash
gamigo-recycled-sorted.word
-r gamigo-recycled-sorted.rule
0
120
240
360
480
600
720
840
961
1081
1201
1321
1441
1561
1681
1802
1922
2042
2162
2282
2402
2523
2643
2763
2883
3003
3123
3243
3364
3484
3604
3724
3844
3964
4084
4204
4324
4445
4565
4685
4805
4925
5045
5166
5286
5406
5526
5646
5766
5887
6007
6127
6247
6367
6487
6608
6728
RECYCLED WORDLIST
RockYou 1000000
Recycled
1800000
1600000
1400000
1200000
1000000
800000
600000
400000
200000
Crack
Passwords
RuleGen
StatsGen
PolicyGen
MaskGen
Defenders &
Developers
Security
Researchers
Penetration
Testers