Elcomsoft turns your PC into a password cracking supercomputer (gulp)

That's why I always have my passwords set to "password". Whenever someone cracks it they get really mad at themselves for putting in all that effort.

Hmm, their website does list PGP. The thing about brute force attacks is that they can very easily be modified to crack any encryption to which you know the algorithm. The speed at which they perform is just a product of the complexity of the encryption, and the computational power of the system doing the cracking. If you want to see an awesome cracking machine check out http://nsa.unaligned.org/

Greetings, Professor Falken. Shall we play a game?

I wish I could run Matlab on this thing...

didn't Microsoft BUY Elcomsoft? I swear I read an article saying they did

Sheeet, I don't even have the software yet and I already want to cause some sort of mischief!

That's it... I'm going to the vid store right now to get me a copy of "Live Free or Die Hard" movie and I'm going to watch it 20 times straight through! THEN we will see who is da MAN!


Fragging and Cracking at the same time... DAM! Somebody get me a Bud Light and some Doritos!

:D

oh no, not true,

Under a special agreement with Microsoft, ElcomSoft System Recovery is based upon Microsoft Windows Preinstallation Environment (Windows PE), a hardware-independent minimal Windows system that replaces the antique DOS boot disk that was used to set up new computer systems.

http://www.pr.com/press-release/55098

LOL, figures it's a Russian patenting a password cracking app. Almost all the pirate websites selling software on the web are run by Russians.

IT would take a freaking super computer to crack my... O wait... I don't have a password...

Yes, but can it crack passwords while playing Doom?

@Trent:

Brute force doesn't do you any good if you cant get to the password (shadow) file.

Either way, no one is truly concerned with this technology, its just another script kiddie tool. That's of course to not say its not dangerous.

Quantum computing is what we're afraid of.

Use this for something more benign please like cracking Winrar passwords :D

You won't find it anywhere for under 200$

(cough)Newsbins(Cough)Giganews(cough)
http://www.binsearch.info/?q=Elcomsoft+Distributed+Password+Recovery&max=100&adv_age=200&server=

So if this is basic Brute Force, would it stand to reason that they will be smart enough to make it multi threaded and able to split the workload into multiple chunks?

Basically, you could take a motherboard supporting Quad PCIE x16 Slots (Mac Pro anyone?) and stuff in 4 x 8800 Ultra Cards into a single machine. Because your not playing games, you dont need SLI to work on all 4.
Would that make the cracking process even faster?
The scary part is you could stuff all that power, along with a QX6850 and several TB of storage into an average looking tower case.

Wow. Wow. WOW. The program could cost $13,000 dollars and it won't matter. That puppy is going to be ripped, cracked, and packed on Bittorent so fucking fast. If it is released commercially, it is going to hit the hands of every network engineer, hacker, and script kiddy out there.

If it supports SLI, holy shit. Somebody that *wants* to really crack passwords will be able to put together one HELL of a cracking system. If it supports DISTRIBUTED brute force attacks with multiple programs over a network...... near instant cracking machine for a group of 10+ hackers with a bunch of hardware. Let's not even think of a somebody with a Storm Worm botnet army that can adapt this program in a distributed manner.

This is going to cause a lot of problems for awhile, but it will really force people to use more complex and longer passwords, which is going to piss off users a lot :) I am sure a lot of network admins out there are quietly laughing themselves to death now that there is an EXTREMELY compelling reason to force all network users to conform to strong password requirements.

I use 24 character passwords with unprintable characters, which means you have to worry about 250+ characters which vastly increases the permutations. That is probably the only way you could be safe.

If this program can crack a 10 character password with a base of 90 characters in a day, then a 20 character password with a base of 200 characters will be many orders stronger and push the bar back up to months and years.

This is not necessarily MS's fault either. Granted they completely suck at security, but they could rely on 2 or 3 months to brute force a password and in that time it could be highly likely to change with appropriate policies. Now they can't.

some one change my administrator password on network workgroup.....can anyone tell me how it can be done using the command promt.....plz reply soon.....