New Job-Role Training Path: Active Directory Penetration Tester! Learn More

hec7orci7o

Earned a new badge!

Badge Icon

Grab the keys and move laterally

For completing the Password Attacks module

9909

Users earned this badge

0.52%

Users have this badge

Completed on 12 Sep 2024

Password Attacks

Passwords are still the primary method of authentication in corporate networks. If strong password policies are not enforced, users often choose weak, easy-to-remember passwords that can be cracked offline and leveraged to escalate access. As penetration testers, we encounter passwords in many forms during our assessments. It's essential to understand how passwords are stored, how they can be retrieved, methods for cracking weak passwords, techniques for using hashes that cannot be cracked, and how to identify weak or default password usage.