Комментарии:
Man you're awesome.
Ответить@JohnHammond
FYI:
DO NOT USE THE COLABCAT IF YOU WANT TO USE GOOGLE COLAB NOTEBOOKS FOR REGULAR USE!
YOU WILL GET SUSPENDED for violating their terms and conditions. Wish i knew this before trying to run the notebooks.
@JohnHammond Google Collab was instantly locked after installing colabcat because of misusuing their service. I am now trying to solve this with google. :/ I could not even buy resources anymore after that.
Ответитьsuper
ОтветитьGot stopped by Google trying to use collabcat... Something about "potential abuse". Oh well!
ОтветитьThis is awesome! Please do rainbow tables next 🙂
ОтветитьM U N G
Ответить"Psudohash" can also be added to this mix of awesome tools. It can generate millions of keyword-based mutations in seconds, based on (customizable) leet character substitutions, char-case variations and literally all of the unique word mutations these two methods evaluate to, when combined. It can also append common padding values before or after each word mutation (frequently used to make passwords longer / more complex, e.g. "!@#", "!!!" and so on) as well as range of year values in various patterns (and more).
ОтветитьMor explaining this video hash cat comment skills tools files open
Ответитьdies of cringe
ОтветитьHey calm down, you are speaking way too fast! Using online services to store password is a madness
ОтветитьTry 2to3 to fix python2.
ОтветитьCool video, thx!
ОтветитьSo you look and sound like Seth Rogen 😮😮
ОтветитьHow about password masking attacks? You able to showcase those techniques?
ОтветитьA bit meta, but related - after hearing about Passbolt from you and looking into it my problem with it is not the concept, but rather what seems like deceptive - at minimum misleading - marketing on their website. There’s no desktop app, but they have images meant to look like screenshots of a desktop app running on MacOS. Second, these MacOS screenshots hint at MacOS “native” - but Safari is conspicuously absent from the supported browsers.
It’s disappointing that a desktop app and Safari support are missing. Disappointment, however, turns to suspicion when presented with mockups masquerading as a real product. If I feel like I’m being deceived, none of the outstanding features or benefits matter.
Hey plz make video on Krack attack or Router firmware backdooring😊
ОтветитьYou are not safe if you're not using a password manager, some 2FA will also go a long way! cool content John!
ОтветитьTake a video about this , The world is now ruled by one community of people, the world Satanic elite, you can also call them the committee to meet the Antichrist and prevent the 2nd coming of Jesus, Trump called them the deep state, at the moment it consists of about 10,000 people, the main ones there are Rockefellers, Rothschilds, Windsors, Baruchs, they, their ancestors, descendants and other people who enter there have the mark of Lucifer, which, if they bring the antichrist and do not allow the 2nd coming, they will receive eternal life after the x hour, and the rest of humanity, for all the time that they have lived, they won't get anything, so all people should know about the existence of a world government (Jesus who was a The Prophet of God, not God.God will send Jesus as a reward to humanity, if humanity deserves it, for this it is necessary to fight Lucifer and his elite)
ОтветитьGreat video john! But my english is a bit bad i didnt understand what "Munging" meant that you have in your title so i decided to google it and the first link that popped was of the urban dictionary and now im traumatized for my whole life!
ОтветитьI thought colabcat is dead, thanks to some detecting mech. of google and a use restriction that forbids password cracking
ОтветитьThanks, John. Most illuminating.
ОтветитьI hope that you will make a video by hacking the Mikrotik server, the latest update
ОтветитьGoogle will ban if you is use hashcat. I been banned already
Ответитьit would be good to educate your viewers about the benefits of password length in defeating brute forcing attempts at password cracking like this. would you have attempted this video demo on a password hash for a password that was between 15 and 20 characters and only used 3 simple unrelated lowercase dictionary words? That would be a great educational video to watch John. I enjoyed this video btw 👍😀
ОтветитьHe mentioned that basic dictionary words should never be used in a password, but aren't these words the basis for things like diceware? Is diceware no longer considered good enough for generating passwords?
ОтветитьVery interesting video! Just cracking these hashes like nothing...
To the sponsor segment: I don't need Passbolt, I have a password manager built-in to Firefox.
Thank you John for this absolute gem of an episode!
ОтветитьPassbolt caught my interest
ОтветитьFinding the right combination of rules and wordlists is tedious, and I believe it's necessary to use a technique for filtering out duplicate attempts. The hashcat-brain allows you to do just that, which is why I blindly think it's awesome.
ОтветитьCewl video John! :)
ОтветитьJohn.. John Hammond.
ОтветитьI would highly recommend spraygen :). And thanks for a superb video John!
Ответитьif you use the word N|GGER as your password it will be uncrackable because nobody wants to be associated with racism
ОтветитьThis is cool but now most often the hashes are of salted passwords , so its complex to crack those , btw this hack works on leet style wifi passwords 😅
ОтветитьGood
ОтветитьCOOL
ОтветитьThat’s not the type of munging I know about 🤪
ОтветитьI DONT Recommande USING PASBOLT USE UR BRAIN
ОтветитьKnew about OneRuleToRuleThemAll, but learned about CEWL & munging passwords, thank you for another great video! 🙏
ОтветитьPro tip, put emoji in your password and keep it at least 12 characters long, there you have uncrackable password, no matter what you put as password.
ОтветитьHey John, great video once again. I've been meaning to ask something. What's a good course for learning Web App Pentesting out there?
ОтветитьI just used AI to convert munge to python3, works great
Ответитьi just learnt this in my RED team course :) Cewl!
Ответитьjohn is the degrass tyson of cyber sec
ОтветитьYou know what John?! , I've learned many things from you. Thank you 🤩
ОтветитьNot saying I've been cracking neighbors wifi but if I was I'd love using rules
ОтветитьThank you for this Great 👍 content
But what if passbolt got hacked
My passwords will be available online like what happened with LastPass?
Bitwarden ftw
Ответить