Hi Thor, Thanks for posting that, it definitely looks like a tool that will come in handy. That said, unless I'm missing something obvious I think you might have the labels for the results the wrong way around, since when checking a random password it will apparently take longer to crack my password than to crack the entire keyspace!
Password Used : 53dsfkzabwvg (not a real one obviously) Iterations this password: 7,839,264,032,113,450,000 Years to crack this password: 248.58 Iterations for entire keyspace: 4,873,763,662,273,660,000 Years to crack entire keyspace: 154.55 Keith -----Original Message----- From: [email protected] [mailto:[email protected]] On Behalf Of Thor (Hammer of God) Sent: 13 July 2010 06:08 To: [email protected] Subject: TGP Password Strength Checker online I've been thinking about standing up the Password Strength Checker tool in TGP online, so here it is: https://www.hammerofgod.com/passwordcheck.aspx For those not familiar with it, I wanted to come up with a better way of classifying what a "strong" password was (and wasn't). Admins can have "complex" password requirements, but they don't equate to any quantifyable strength of a password/phrase. Like with any math-based tool that attempts to do the thinking for a person, there are certain assumptions one must make about base keyspace derived from a passwords characters, and this is no different. However, what IS different is that you can actually get an idea of exactly how many iterations it will take to crack both a particular password specifically and the keyspace it "lives" in, apply that to actual TIME required to crack it. I like that part, and have found it to be valuable, so here it is in case you do as well. The fully skinny on what I'm doing here can be found at http://www.hammerofgod.com/tgp.aspx#password . Timothy "Thor" Mullen Hammer of God [email protected] www.hammerofgod.com -- E-Mail sent using Agility Mail - www.agilitymail.co.uk
