bakingsoda Posted October 16, 2019 Share Posted October 16, 2019 Let's say the end goal of an attack is just to get a maximum amount of random working logins for a given website. You have a list of usernames (1 million for example), What would be the most effect username to password ration to use for the attack - given you have 1 week to complete it? example: A: Use 100 usernames with a huge password list of 1 million passwords B: Roughly same amount of usernames and passwords C: Use all 1 million usernames, testing each with only 100 most commonly used passwords? Out of experience, which do you think would be the most effective? Quote Link to comment Share on other sites More sharing options...
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.