John P.

One Mans Blog

Specialization is for Insects.

Ophcrack Hacking Windows Passwords

Windows security is sad. Although most of you have probably already read my article about using strong passwords, even the strongest passwords won’t keep your Windows login account from being penetrated. In fact, it takes only a couple of minutes to gain complete access to a Windows system using nothing more than a free CD ROM.

Now, if there is any good news - people are constantly locking themselves out of their personal laptops and home computers by forgetting the password. And recently I’ve had two different friends do this within a period of a couple of days. So you guys know how this works… when I start getting requests, I document the solution.
Read the rest of this entry »

John P on Connecticut Public Radio

Real Life Survival GuideBruce Barber, from the Real Life Survival Guide, recently interviewed me via phone for a segment on Password Security. That segment will go live today on Connecticut Public Radio, so I’d like to welcome any visitors stopping by as a result.

For the rest of us that don’t happen to live in Connecticut, here is the interview as graciously provided by Bruce.

As further reading on the topic of password security, please see my complete article on How I’d Hack Your Weak Passwords. And if you are looking for the password manager I referred to called Roboform I created a short RoboForm Demonstration Video to get you started.

You’ll also find over 30 other related articles in the Security category.

For the regulars around here, you really should stop by Bruce’s site and listen to his other interviews (he’s even got an RSS feed to subscribe to). There are a lot of great tips, and he is a true professional so these are high quality audio clips. Believe me, if it weren’t for the magic of Bruce’s editing prowess mine wouldn’t have been very good!

How I’d Hack Your Weak Passwords

User LoginIf you invited me to try and crack your password, you know the one that you use over and over for like every web page you visit, how many guesses would it take before I got it?

Let’s see… here is my top 10 list. I can obtain most of this information much easier than you think, then I might just be able to get into your e-mail, computer, or online banking. After all, if I get into one I’ll probably get into all of them.

  1. Your partner, child, or pet’s name, possibly followed by a 0 or 1 (because they’re always making you use a number, aren’t they?)
  2. The last 4 digits of your social security number.
  3. 123 or 1234 or 123456.
  4. “password”
  5. Your city, or college, football team name.
  6. Date of birth - yours, your partner’s or your child’s.
  7. “god”
  8. “letmein”
  9. “money”
  10. “love”

Statistically speaking that should probably cover about 20% of you. But don’t worry. If I didn’t get it yet it will probably only take a few more minutes before I do…
Read the rest of this entry »

CleaningHere’s a question I received from a reader:

Can you recommend a good hard drive sweeper? I need to clean up my PC at work… been surfing the net a little too much.

Well yes. Yes I can…
Read the rest of this entry »


I use the "No Adverts for Friends" plugin by Donncha O Caoimh