Re: policy-based password cracker

[thomas springer <tuevsec () gmx net>]

John the Ripper might have all you want, if you have a closer look at 
the rules in john.conf and use bruteforce-mode only.
Be warned - fiddling around with johns ruleset might lead to anything 
from sleepless nights to insanity.

cheers,

tom

> Obviously, min and
> max is not the issue, but I can not seem to find
> anything that will only test passwords that meet
> complexity requirements (lowercase alpha, uppercase
> alpha, number).  Something that generates this into a
> rainbow table would be even better.....
>  


------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner: 

Hackers are concentrating their efforts on attacking applications on your 
website. Up to 75% of cyber attacks are launched on shopping carts, forms, 
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are 
futile against web application hacking. Check your website for vulnerabilities 
to SQL injection, Cross site scripting and other web attacks before hackers do! 
Download Trial at:

http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------