Author Topic: Test your password strength (Read 9485 times)

vaskidmark · « **on:** September 06, 2011, 12:30:16 PM »

https://www.grc.com/haystack.htm

No, it will not really take that long for YOUR password to be cracked. But it will give you an idea of how easy or difficult it is to crack your current password.

Now you can ease up on that paranoia you have about someone getting into your secret file of butterscotch pudding recipes and devote more time to your paranoia about a key-logger the government forced them to bury in the latest update to your virus protection program.

But look at it anyway. And I guarantee that you can trust them when they say whatever you enter as a password will stay on your browser - because they have that hooked up, too.

stay safe.

TechMan · « **Reply #1 on:** September 06, 2011, 12:35:02 PM »

Interesting. Thank you for posting.

ETA: My best password (for now) would take 72.30 billion centuries for online attack scenario.

MicroBalrog · « **Reply #2 on:** September 06, 2011, 01:24:02 PM »

Note:

If you used "there never was a story of more woe than that of juliet and her romeo", it would take the system 49.96 trillion trillion trillion trillion trillion trillion trillion trillion trillion centuries to guess.

lee n. field · « **Reply #3 on:** September 06, 2011, 01:26:06 PM »

My pgp passphrase is estimated to take a massive cracking array "2.94 thousand trillion centuries".

My usual password, well, less.

Scout26 · « **Reply #4 on:** September 06, 2011, 01:31:48 PM »

43.05 Thousand Centuries.

If your that persistent, you can have the $.48 that'll be in my bank account.

Jamisjockey · « **Reply #5 on:** September 06, 2011, 01:32:40 PM »

"i did your mom" in all lower case got

Online Attack Scenario:
(Assuming one thousand guesses per second) 2.00 trillion centuries
Offline Fast Attack Scenario:
(Assuming one hundred billion guesses per second) 20.03 thousand centuries
Massive Cracking Array Scenario:
(Assuming one hundred trillion guesses per second) 20.03 centuries

TechMan · « **Reply #6 on:** September 06, 2011, 01:39:05 PM »

i (> mabs (Please note I don't)

Online Attack Scenario:
(Assuming one thousand guesses per second)   2.80 thousand centuries
Offline Fast Attack Scenario:
(Assuming one hundred billion guesses per second)   1.02 days
Massive Cracking Array Scenario:
(Assuming one hundred trillion guesses per second)   1.47 minutes

AJ Dual · « **Reply #7 on:** September 06, 2011, 01:52:11 PM »

Random phrase strings really are the way to go.

Although my common passwords are better than I thought. And my PGP passprhase is one of those, "more energy in the universe" deals too.

Nick1911 · « **Reply #8 on:** September 06, 2011, 02:04:36 PM »

Ironically, the work password I have that actually has PHI access tied to it is only 2.7 hundred thousand centuries

But "correct horse battery staple" gives an online attack time of 12.41 trillion trillion trillion centuries

mtnbkr · « **Reply #9 on:** September 06, 2011, 02:08:22 PM »

But we all know that one. :D

Chris

AmbulanceDriver · « **Reply #10 on:** September 06, 2011, 04:44:25 PM »

*gigglesnort*

"my voice is my password, verify me"

Online Attack Scenario:
(Assuming one thousand guesses per second) 5.23 hundred billion trillion trillion trillion centuries
Offline Fast Attack Scenario:
(Assuming one hundred billion guesses per second) 5.23 thousand trillion trillion trillion centuries
Massive Cracking Array Scenario:
(Assuming one hundred trillion guesses per second) 5.23 trillion trillion trillion centuries

bedlamite · « **Reply #11 on:** September 06, 2011, 05:12:44 PM »

"correct horse battery stapler" = 7.32 hundred trillion trillion trillion centuries

Brad Johnson · « **Reply #12 on:** September 06, 2011, 05:24:07 PM »

Kinda reminds me of a friend who got one of the little little Setry Fire Safe to "protect" his valuables. Aside from the fact that it has a carry handle for the thief's convenience, I had the lock picked in less than 30 seconds with nothing more than a safety pin and a screwdriver.

He got a better safe.

Brad

MechAg94 · « **Reply #13 on:** September 06, 2011, 05:26:31 PM »

Of course, if I enter my best password in on this site, they will have my password and my IP address and then it becomes a lot easier to crack my login.

Regolith · « **Reply #14 on:** September 06, 2011, 06:03:18 PM »

Quote from: MechAg94 on September 06, 2011, 05:26:31 PM

Of course, if I enter my best password in on this site, they will have my password and my IP address and then it becomes a lot easier to crack my login.

Yeah, this. Entering your passwords into a strange website when you don't know its bona fides is a bad idea.

sanglant · « **Reply #15 on:** September 06, 2011, 06:09:53 PM »

interesting way to get passwords. you'll have to try harder to get mine though.

Stetson · « **Reply #16 on:** September 06, 2011, 07:11:15 PM »

You can use high ACSII symbols in your password on a Windows network.

♫ I l0v3 mu5ic! ♫ - is an example of a valid password.

<alt14 I l0v3 mu5ic! alt14> Special character, capital letter, numbers, lower case letters fits everything but a possible length requirement.

RocketMan · « **Reply #17 on:** September 06, 2011, 08:23:57 PM »

Quote from: Regolith on September 06, 2011, 06:03:18 PM

Yeah, this. Entering your passwords into a strange website when you don't know its bona fides is a bad idea.

Gibson Research Corp. has been around working PC security issues for, like, well, since the days of steam powered computers.
They've got some handy free tools on their site. Reasonably accurate and useful for free tools.

Scout26 · « **Reply #18 on:** September 06, 2011, 08:27:08 PM »

Quote from: Stetson on September 06, 2011, 07:11:15 PM

You can use high ACSII symbols in your password on a Windows network.

♫ I l0v3 mu5ic! ♫ - is an example of a valid password.

<alt14 I l0v3 mu5ic! alt14> Special character, capital letter, numbers, lower case letters fits everything but a possible length requirement.

Umlauts, much better....

freakazoid · « **Reply #19 on:** September 06, 2011, 08:57:24 PM »

Two passwords I normally use.
First, 3.43 hours. ROFL
Second, 1.49 hundred thousand trillion centuries

Jamisjockey · « **Reply #20 on:** September 07, 2011, 08:04:32 AM »

Quote from: MechAg94 on September 06, 2011, 05:26:31 PM

Of course, if I enter my best password in on this site, they will have my password and my IP address and then it becomes a lot easier to crack my login.

Thats why I didn't put my password on thier site.

TechMan · « **Reply #21 on:** September 07, 2011, 09:54:16 AM »

Just save the page to your local drive and then open it in the browser of your choice.

Ben · « **Reply #22 on:** September 07, 2011, 10:17:48 AM »

Analog of one of my over the top complex passwords required at work:

Online Attack Scenario:
(Assuming one thousand guesses per second)   27.98 billion trillion centuries
Offline Fast Attack Scenario:
(Assuming one hundred billion guesses per second)   2.80 hundred trillion centuries
Massive Cracking Array Scenario:
(Assuming one hundred trillion guesses per second)   2.80 hundred billion centuries

Analog of my super easy to remember passphrase I use on the encrypted file where I store my overly complex work passwords that I can never remember:

Online Attack Scenario:
(Assuming one thousand guesses per second)   4.99 trillion trillion centuries
Offline Fast Attack Scenario:
(Assuming one hundred billion guesses per second)   49.85 thousand trillion centuries
Massive Cracking Array Scenario:
(Assuming one hundred trillion guesses per second)   49.85 trillion centuries

Ned Hamford · « **Reply #23 on:** September 07, 2011, 11:38:01 AM »

geronimotwo · « **Reply #24 on:** September 07, 2011, 01:12:39 PM »

Quote from: Regolith on September 06, 2011, 06:03:18 PM

Yeah, this. Entering your passwords into a strange website when you don't know its bona fides is a bad idea.

so, was there anyone here willing to admit they used their real password?

i usually have a simple password for the different forums i visit, but a more elaborate for pay-pal etc. even my simple one takes a few months to open.

News:

Author Topic: Test your password strength (Read 9485 times)