- It's the applications, stupid
- Will a whitelist save personal computing?
- Thousands of Web sites under attack
- To solve the unsolvable problem
- Re-thinking the security of virtual machines
- Security Development Lifecycle trumps code complexity
- Is your Web site FIPS compliant?
- Computer security: Why have least privilege?
- Strategic security: Get a handle on authentication
- Control user installs of software
May 17, 2006 | Comments: (0)
Extract Potential Passwords from Web Pages
Tool creates password dictionary lists from web sites
Here's an interesting tool, Accent's (http://www.passwordrecoverytools.com/download.asp) Keyword Extractor.
http://www.passwordrecoverytools.com/store/ake_setup.exe
It extracts whole words from any inputted web site to create a password dictionary file for password cracking. The rationale is that in any large company, some small percentage of employees love their company and its products so much that they create their passwords using something identified by the company (and possibly listed on the company's web site). I can believe that. You work hard on a particular project for over a year, it's not hard to believe that you might choose a password that is related to your beloved product.
The beta tool is a free download. Install the product, then choose New, and type in a web page URL to browse.
On my XP SP2 IE 7 beta, it froze and locked up, but not before creating an out_all.dat file (which by the way was not the file name I had told it to create). Heck, it's beta.
Interesting if nothing else.
Thanks to Canadian student David McFarlane for this one.
Posted by Roger Grimes on May 17, 2006 07:20 AM
RATE THIS ARTICLE:
-
- COMMENTS
