Government Security
Network Security Resources

Jump to content

Photo

Sh4d0w`s Password List Generator

- - - - - c++
  • Please log in to reply
37 replies to this topic

#16 sh4d0w`

sh4d0w`

    Private First Class

  • Members
  • 58 posts

Posted 12 November 2007 - 08:22 AM

sorry but in my opinion this program doesn't make much sense because it's just like "normal" bruteforcing.
to me the generated password files are waste of space because a simple brute forcer can do the same job
without this gigabytes of diskspace ;)


sure it is, IF THE BRUTEFORCER DOES SUPPORT generating passwords on it's own.
i made this app because not every bruteforcer has that option and if someone is working on a bruteforcer he can find an algorithm for the password generation here (which is one of the reasons why i provided the sourcecode)

#17 ADX

ADX

    Private

  • Members
  • 7 posts

Posted 10 December 2007 - 10:21 AM

sorry but in my opinion this program doesn't make much sense because it's just like "normal" bruteforcing.
to me the generated password files are waste of space because a simple brute forcer can do the same job
without this gigabytes of diskspace ;)


sure it is, IF THE BRUTEFORCER DOES SUPPORT generating passwords on it's own.
i made this app because not every bruteforcer has that option and if someone is working on a bruteforcer he can find an algorithm for the password generation here (which is one of the reasons why i provided the sourcecode)


and if i have a bruteforcer how cand i get the algorithm in it sry i`m a novice
for example if a have to crack the user and the pass pls if u have time explain how the algorithm gets in with the code

#18 mrafif

mrafif

    Private

  • Members
  • 1 posts

Posted 05 January 2008 - 01:11 AM

Thanks for this.. :rolleyes:

#19 TRIBAL-PHoENiX

TRIBAL-PHoENiX

    Specialist

  • Members
  • 102 posts

Posted 15 September 2008 - 03:29 PM

perhaps a linux version anyone ?

Edu edit: dont bump up old threads unless you got something to add. You could have PMed this question to the topic poster. thanks

#20 grimm703

grimm703

    Private

  • Members
  • 6 posts

Posted 19 November 2008 - 10:36 AM

i must admit this is one of the best password generator i ever seen ,good job and tks i really needed something like this

#21 sh4d0w`

sh4d0w`

    Private First Class

  • Members
  • 58 posts

Posted 14 December 2008 - 06:02 AM

perhaps a linux version anyone ?

Edu edit: dont bump up old threads unless you got something to add. You could have PMed this question to the topic poster. thanks


the source code is included so you can just compile it under linux:

#22 TRIBAL-PHoENiX

TRIBAL-PHoENiX

    Specialist

  • Members
  • 102 posts

Posted 14 December 2008 - 07:49 AM

ehhh after some research came to a conclusion that brute forcing is useless, considering the time it takes, social engineering is the way around.

#23 webdevil

webdevil

    Retired GSO General

  • Sergeant Major
  • 1,195 posts

Posted 14 December 2008 - 05:16 PM

ehhh after some research came to a conclusion that brute forcing is useless, considering the time it takes, social engineering is the way around.

uh, oh. whatever brought you to that conclusion?
Bruteforce is an extremely effective method. If you have /etc/passwd you are sure to get alteast 1 account bruteforced with only 10-15 password world list.
Bruteforcing will also help you identify usernames if not password in webapplications, etc. etc.
Bruteforcing anything blindly isnt good, that should get you to no success.
Just dont categorise a method such as bruteforcing useless. Please!

#24 TRIBAL-PHoENiX

TRIBAL-PHoENiX

    Specialist

  • Members
  • 102 posts

Posted 14 December 2008 - 05:23 PM

i was specificaly refering to brute forcing not using wordlist if thats what you ment, i just had bad experience with bruteforcing promising to take years to crack something. so i went wordlist way.

#25 jllerk

jllerk

    Private

  • Members
  • 13 posts

Posted 22 November 2009 - 03:48 PM

ive tested your application and i must say i was impressed!
I generated the 1 - 4 chars first and that worked like a charm but when i try higher charlenghts like 1 - 5 1-7 or even 1-14 it doesnt give a ETA.. and ive been generating the 1-14 for like 30 hours now and the filesize is 1030gb yes its over 1TB big...

is there a possibility that this is an error in the code?

because the 1-4 is 87mb and the 1-7 became over 40GB before i stopped it...

greets :)

#26 anachnu

anachnu

    Private

  • Members
  • 2 posts

Posted 20 March 2010 - 07:08 AM

For Linux

nano passgenerator.sh

for ((n=0;n<10;n++)); do dd if=/dev/urandom count=1 2> /dev/null | uuencode -m -| sed -ne 2p | cut -c-8; done

Ctrl + x -> save yes -> name in that case passgenerator.sh

chmod + x passgenerator.sh

./passgenerator.sh
1. change 10 to what ever number, for the number of passwords you want change 8 to whatever for the lenght of the password

salut

me

#27 AceTK

AceTK

    Private

  • Members
  • 1 posts

Posted 20 May 2010 - 10:20 AM

Hi sh4d0w`

Big thanks for your program it was just what i was looking for. I have a question though.

I set the ini file to make combinations of charactors all capital letters and min and max length 8 charactors as thats what i need but it says that it will be over a terabyte in size? over a terabyte just for text string?? is this correct?

Thanks again

#28 infiltrator

infiltrator

    Staff Sergeant

  • Sergeant Major
  • 421 posts

Posted 29 June 2010 - 09:29 PM

Awesome tool, I have used several tools for generating passwords and I have to say this is by far the best I came across.
Great work, love it.

#29 Mr TomtomGo

Mr TomtomGo

    Private

  • Members
  • 4 posts

Posted 11 October 2010 - 11:30 PM

Looks like what I'm looking for, I'm currently generating a list of passwords using these parameters
min lenght 10
max lenght 10
charset abcdefghijklmnopqrstuvwxyz0123456789

The target password is 10 chars in length and composed of lowercase letters and numerical digits (51bits)
Generator has been working for a few minutes and generated 5Go of data so far.

Pwlistgen indicated that the estimated file size would be "too big", my question is, What is "too big" ?

#30 webdevil

webdevil

    Retired GSO General

  • Sergeant Major
  • 1,195 posts

Posted 12 October 2010 - 01:08 AM

This is probably why Mr TomtomGo


>>> math.pow(36,10) ## select a permutation of 10 from the charset
3656158440062976.0

>>> math.pow(36,10)*12 ## multiply by 12 assuming 10bytes+/r/n
43873901280755712.0
>>> math.pow(36,10)*12/math.pow(1024,3) ## Size in GB
40860754.69921875
>>> math.pow(36,10)*12/math.pow(1024,4) ## Size in TB
39903.080760955811





Also tagged with one or more of these keywords: c++