Monday, April 5, 2010

CUPP - Common User Passwords Profiler v3

The most common form of authentication is the combination of a user name and a password or pass phrase. If both match values stored within a locally stored table, the user is authenticated for a connection. Password strength is a measure of the difficulty involved in guessing or breaking the password through cryptographic techniques or library-based automated testing of alternate values.

A weak password might be very short or only use alphanumeric characters, making decryption simple. A weak password can also be one that is easily guessed by someone profiling the user, such as a birthday, nickname, address, name of a pet or relative, or a common word such as God, love, money or password.

That is why CUPP was born, and it can be used in situations like legal penetration tests or forensic crime investigations.

3.0 - added word length shaping function - added wordlists downloader function - added alectodb parser - fixed thresholds for word concatenations - fixed sorting in final parsing - fixed some user input validations - ascii cow now looks nicer

Download CUPP

No comments: