Created
September 13, 2011 16:07
-
-
Save AD7six/1214220 to your computer and use it in GitHub Desktop.
how long does it take to crack a salted sha1 password based on the hash alone
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
assume the salt and password are comprised of 62 characters: a-zA-Z0-9 | |
assume a 40 char salt | |
so the hashed string for a 6 letter password is 46 chars | |
62^46 = 2*10^82 permutations | |
at 700,000,000 passwords tried per second, you'd need 4*10^73 seconds to try all permutations | |
that's 1*10^66 years. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Newer GPU-based methods can do ~2,300,000,000 SHA1 checks per second. http://www.golubev.com/hashgpu.htm
Still good enough, of course ;-).