|
|
Aproximace doby výpočtu distribuovaných úloh pro lámání hesel
Jadrná, Lucie ; Horák, Adam (referee) ; Hranický, Radek (advisor)
This thesis focuses on improving the accuracy of password cracking time estimation in the distributed system Fitcrack. Based on the analysis of the current solution, key factors influencing the accuracy of computation were identified, and a set of algorithms was proposed to refine the estimation. Conducted experiments confirmed the effectiveness of the proposed algorithms, with the new solution bringing significant improvement in the accuracy of cracking time estimation in 90.32 % of measured tasks, including brute-force attack, dictionary attack, combination attack and hybrid attacks.
|
|
|
Automated planning of password cracking tasks
Brandšteter, David ; Horák, Adam (referee) ; Hranický, Radek (advisor)
This thesis aims to design and implement an extension module for the Fitcrack system. The extension is meant to help the user who is time-limited and can’t or is unable to estimate the duration of the attack. The extension is also helpful for the user who does not want to spend time setting up individual attacks. It is an automated scheduler that, based on a given time, creates several attacks, whose duration will correspond to the time required by the user. The planner’s output is a prepared set of attacks in the form of a batch, ready for use. Later in this thesis, there are described experiments that were used to verify the applicability of the solution.
|
|
|
Password Cracking with Rainbow Tables on GPU
Jahoda, David ; Holop, Patrik (referee) ; Malinka, Kamil (advisor)
This thesis focuses on the design and implementation of a password cracking tool using Rainbow tables with GPU acceleration. Emphasis is placed on the tool's performance, utilizing contemporary software and hardware resources. In the experimental section, a comparison is made with existing solutions employing Rainbow tables and counter measures against them.
|
|
|
Automatizované generování pravidel pro modifikaci hesel s využitím metod strojového učení
Šírová, Lucia ; Veselý, Vladimír (referee) ; Hranický, Radek (advisor)
The success of password cracking using a dictionary attack is limited by the scope and quality of the used dictionary. One way to enhance the success rate of password cracking is to expand the dictionary with password mangling rules. These rules typically reflect human tendencies in password creation, such as appending numbers at the end of the password or capitalizing the first letter. This bachelor’s thesis describes a tool’s design and implementation process that aims to generate these rules by analysis of existing passwords, for example, from datasets obtained during security breaches. This tool enhances existing solutions by providing a choice of four distinct clustering methods. Unlike other rule-generating tools that leverage machine learning, it broadens the generated rules to nineteen unique types. Additionally, the tool offers customizable configurations for rule types and their priorities. Testing results suggest that the tool discussed in this bachelor’s thesis performs comparably or even better than a previously known state-of-the-art solutions.
|
|
|
Optimalizace vysoce náročných úloh v systému Fitcrack
Dacík, Ondřej ; Horák, Adam (referee) ; Hranický, Radek (advisor)
The aim of this thesis is to design and implement optimizations for Fitcrack, a distributed password cracking tool. First, a set of computational tasks was created on which computation time and CPU utilization were measured. Problematic areas of the tool were then identified from the results, for which modifications were proposed and implemented to increase the cracking efficiency by a more appropriate task distribution and reduced communication overhead. They concern work with a large number of masks and password mangling rules, optional benchmark skipping and sharing cracked hashes across jobs. The benefit of these changes is finally shown in experiments where the modified version of the tool is compared with the original version. For jobs with a large number of masks, speedups of up to 37 % were achieved, and for the combination of a small dictionary, many rules and computationally intensive hashes, it was possible to reduce the duration of jobs by up to 180 times compared to the original version of the tool.
|
|
|
Metadata Analysis of Cracking Password Task
Pokorný, Šimon ; Hranický, Radek (referee) ; Veselý, Vladimír (advisor)
This thesis deals with the design and implementation of the analytical web dashboard for remote administration of the Fitcrack system. This system is used for distributed password recovery. Web administration is a single-page application which is divided into a server and client part. These parts communicate with each other. There is a lot of information across the system that logged into a database for later analysis or displayed in real-time for the user. The best form to show data is a graphical element of various types (arrow, graph, table, square) and different colors showing what is happening.
|
|
|
Password Cracking Using PRINCE Algorithm and Fitcrack System
Bolvanský, Dávid ; Ryšavý, Ondřej (referee) ; Hranický, Radek (advisor)
The PRINCE algorithm is a faster and more advanced version of a combination attack. Non-distributed password breaking often encounters its limits, and its applicability to real tasks decreases due to the increasing demand for computing resources of the device. The aim of this work is to design a distributed version of the the PRINCE attack as an extension of Fitcrack system, which focuses on distributed password cracking. The proposed design is implemented and integrated into the Fitcrack system. The work examines the PRINCE attack on a set of experiments, which examines the impact of various configuration options. Part of the experimental part is a comparison of the PRINCE attack with the dictionary and combination attack. The purpose of the comparison is to find cases where the PRINCE attack is better than other attacks. Finally, the integrated PRINCE attack solution in the Fitcrack system is compared with the solution implemented in the Hashtopolis system.
|
|
|
Optimization of Task Distribution in Fitcrack System
Ženčák, Tomáš ; Ryšavý, Ondřej (referee) ; Hranický, Radek (advisor)
The goal of this thesis is the optimization of task distribution in the Fitcrack system. The improvement is reached by way of increasing the accuracy of the estimation of the computational power of worker nodes, and the prevention of the creation of extremely small tasks, as well as increasing the efficiency of the transfer of the tasks to the worker nodes. In this thesis, the current state of the Fitcrack system is described, tested, and evaluated. This thesis then describes the weak points of the current implementation, proposes ways of remediating them and describes, tests and evaluates the implementation of those proposals.
|
|
|
Wi-Fi Password Cracking
Šopf, Petr ; Tisovčík, Peter (referee) ; Orsák, Michal (advisor)
This bachelor's thesis deals with the issues of Wi-Fi networks security. The first part of thesis is about security options and issues related to those options. Next part compares most used tools for Wi-Fi attacks and lists features of those tools. Best tool is then used and software for sniffing communication between access point and client is created. Sniffing tool is created in two version, one version is used for standalone devices and another one for probe developed on FIT BUT.
|
|
|
Analysis of Distributed Computing Technologies for Password Cracking
Mráz, Patrik ; Veselý, Vladimír (referee) ; Hranický, Radek (advisor)
The goal of this thesis is to analyze the technologies for distributed computing in password cracking. Distribution is a key factor regarding the total time of cracking the password which can sometimes take up to tens of years. In the introductory section we take a look at the general password cracking, types of attacks and the most popular tools. Next we address the GPU parallelization as well as the need of distributed computing on multiple computers. We look at all kinds of technologies, such as VirtualCL, BOINC, MPI and analyze their usability in password cracking. We examine each technology's performance, efficiency, scalability and adaptability when given pre-defined conditions. Part of this thesis is a design and implementation of distributed password cracking using MPI technology along with Hashcat, a self-proclaimed World's fastest password cracker.
|
guest ::
