hmmm.. just found my self asking this question and thought I would throw it up on here.
General discussion of ethical hacking concepts, experiences, ideas and certs.
vijay2 wrote:With continued awareness about securing passowrds, I think burte forcing is becoming less attractive option. Agreed that brute forcing can give you really low hanging fruit, but you would get more out using options lile Social Engineering. pass the hash and others.
Also, with brute forcing you should remember that the attempts are logged and there is always a issue of locking out accounts.
Hope this Helps
Or does it even matter since all this would have been discussed up front?
Xen wrote:So according to me if you want to bruteforce choose a considerable amount of time and give it up if you couldn't crack the password in that time limit.
KrisTeason wrote:Hahaha, Wow I had no idea Twitter didn't have a password policy to lock an account after so many failed attempts.
Users browsing this forum: No registered users and 4 guests