Skip main navigation
Home / Business & Management / Cyber Security / Advanced Cyber Security Training: Hands-On Password Attacks / Cracking Weak Passwords

Cracking Weak Passwords

In this video, Zanidd will explain why weak passwords are best cracked by brute force attacks. Watch him set a custom configuration to do so.
View transcript
6.2
Hello, world. I’m Zanidd, and welcome back to the Hands On Password Cracking and Security course. In this video, you will break your first weak password with a custom configuration. Why are we bothering with weak passwords? They’re easy and fast to crack and if they’re random they’re only breakable with brute force attack. It’s where they shine. For this exercise, the password will be ffz6.
36.1
This password is not to be found in any dictionary, wordlist, rainbow table, which makes it the perfect example for a brute force attack. This password can, of course, be broken with the default alnum mode but since we know its exact length, we can make a custom mode that could break it even faster.
65.9
You can find the two files in the Git repository that we cloned from the first lesson.
72.4
There are two files: one is called alnum_ffz6_md5, and the other is custom_ffz6_md5. They both contain the same MD5 hash of the password ffz6 but you have to crack both of them. Use the alnum mode for the alnum file and the custom mode for the custom file and compare how long it took for both of them to break the password.
109.2
Have fun with the exercise. In the next video, we will crack a real password that was once used by a real person.

This video will look at why weak passwords are best cracked by brute force attacks. How to break a weak password with a custom configuration will be demonstrated.

Why start with weak passwords? Well, these are easy and fast to crack, and a good place to start before moving on to more difficult examples.

Over to you: Crack your first weak password using a brute force attack. Report back on the experience in the Comments section below.

Want to keep learning?

This content is taken from EC-Council online course
Advanced Cyber Security Training: Hands-On Password Attacks
View Course
See other articles from this course
This article is from the online course:

Advanced Cyber Security Training: Hands-On Password Attacks

Created by
Join Now
This article is from the free online

Advanced Cyber Security Training: Hands-On Password Attacks

Created by
Join Now
FutureLearn - Learning For Life

Reach your personal and professional goals

Unlock access to hundreds of expert online courses and degrees from top universities and educators to gain accredited qualifications and professional CV-building certificates.

Join over 18 million learners to launch, switch or build upon your career, all at your own pace, across a wide range of topic areas.

Start Learning now

Register to receive updates

  • Create an account to receive our newsletter, course recommendations and promotions.

    Register for free