The Exploit

Notes from the Front Lines of Penetration Testing

Category: Password Cracking

Learn expert password cracking techniques, tools, and defenses from Raxis. Stay ahead of threats with practical guides and penetration testing insights.
  • Wireless Series: Using Wifite to Capture and Crack a WPA2 Pre-Shared Key
    Wireless Series: Using Wifite to Capture and Crack a WPA2 Pre-Shared Key for Penetration Testing

    By

    Scottie Cole
    Principal Penetration Tester Scottie Cole begins our wireless penetration testing series with capturing and cracking a WPA2 Pre-Shared Key using Wifite.
    Read More
  • Cool Tools Series: CeWL
    Cool Tools Series: CeWL for Penetration Testing

    By

    Jason Taylor
    Lead Penetration Tester Jason Taylor discusses how the CeWL Custom Word List generator can improve hashcat results for penetration testing.
    Read More
  • Password Series: 8 Practical First Steps to Crack Difficult Passwords
    Password Series: 8 Practical First Steps to Crack Difficult Passwords in Penetration Tests

    By

    Ryan Chaplin
    From rulesets & hardware to wordlists and mask attacks, Lead Penetration Tester Ryan Chaplin shows how to crack difficult password hashes in penetration tests.
    Read More
  • Password Series: Defeating Emerging Password Security Trends with Psudohash
    Password Series: Defeating Emerging Password Security Trends with Psudohash for Penetration Testing

    By

    Ryan Chaplin
    Lead Pentester Ryan Chaplin discusses emerging improvements in password security and how Psudohash can help bypass them on penetration tests.
    Read More
  • Password Length: More than Just a Question of Compliance
    Password Length: More than Just a Question of Compliance

    By

    Brian Tant
    Password length requirements are a key part of password security, but, with PCI, NIST, OWASP, and CIS offering different recommendations, what length is best?
    Read More
  • Broadcast Attacks - Responder
    AD Series: How to Perform Broadcast Attacks Using NTLMRelayx, MiTM6 and Responder for Penetration Tests

    By

    Andrew Trexler
    Andrew Trexler continues his AD Series with an in-depth tutorial on broadcast Attacks using NTLMRelayx, MiTM6 and Responder for penetration tests.
    Read More
  • How to Create an Active Directory Test Environment
    How to Create an AD Test Environment to Use for Penetration Testing

    By

    Andrew Trexler
    Andrew Trexler walks us through creating a simple AD test environment to test new hacks before trying them on a penetration test.
    Read More
  • Raxis CTO, Brian Tant
    Understanding the Why Behind Password Management

    By

    Bonnie Smyre
    In this video, Raxis CTO Brian Tant explains why password mismanagement is still one of the most reliable ways to breach a company network and what you can do to secure your network.
    Read More
  • Raxis CTO, Brian Tant
    3 Steps You Should Take Right Now to Reduce Your Risk of a Cyberattack

    By

    Brian Tant
    In this video, Raxis CTO Brian Tant talks about three steps you should take to secure your network against hackers.
    Read More
  • IKE VPNs Supporting Aggressive Mode
    IKE VPNs Supporting Aggressive Mode

    By

    Bonnie Smyre
    In this post we’ll look at why IKE VPNs with Aggressive Mode enabled continue to be a vulnerability, how it can be exploited, and how to mitigate this risk.
    Read More
  • Fingerprint on keyboard
    The Weakest Link in the Password Hash

    By

    Brad Herring
    Raxis VP of Business Development explains easy rules to use to make your passwords more secure and harder for hackers to crack.
    Read More
  • Data Breach, Cyber Attack, Protection Failed, System Safety Compromised
    HP iLO Password Cracking

    By

    Mark Puckett
    Raxis CEO Mark Puckett shows how simple and fast it is for a hacker to crack a weak HP iLO password hash.
    Read More