In a dictionary attack, passwords from a VERY large list of words in numerous languages, phrases, numbers, names, quotes and other sources of common passwords are used to attempt to guess the password. Multiple combinations of capitalization and combinations of words are tested. Because of the speed of the software programs we use to perform this work, this can be done relatively quickly. We have compiled dictionaries from numerous sources into a single large dictionary that can be used for this type of attack. Typically, people are very similar and most people still choose a word, name or number that is short and easy to remember. This method may provide the password.
|
In a brute-force attack every possible combination of characters is tested against the password until a match is found. This can take a very long time and this method will only be successful on short passwords. Some level of enhancement and skill can be added to this method by carefully planning the sequence of guesses and the character sets used. While this method will eventually be 100% effective, the length of time needed utilizing existing technology can sometimes exceed the age of the universe. While this method is, therefore, only practical with short passwords, we have had success with this method in the past.
|