Any programs/hackers that help with passwords?

[ryker77]

A freind forgot her password for yahoo email. She can answer her personal questions such as DOB and zipcode. But must have mistyped her challenge answer that would allow her to get her password.
I'm sure a password program would crack this in no time.
Any help is greatfull as she has a lot of info in her email account.

 

[Hindustan]

You really have no clue the way the internet mail system work do you? First and foremost, in order to crack the password efficiently you would need a password file. Ussually this file is either encrypted or integrated. You could either try to decrypt the password file (which can be extremly difficult OR you can brute force the password which could take forever). Regardless to the point!

Because Yahoo or Hotmal, or any other www email account doesnt give you access to a password file then you have to resort to plan B.This requires trying all the possible permutations online, which I am sure would alert someone to the attempt and could get you sent to jail depending on what city/state you live in and more importantly how anal the webmaster of the site is or you can try to hack yahoo or hotmail itself (GOOD LUCK) .

I think i will pass. Tell your friend to use her head and write down her passphrase answer down, or sleep witht he webmaster

Hindustan

 

[r00+]

eeep.

Hindu,

You really have no clue how to go about hacking distributed systems do you? You don't need access to /etc/passwd to brute force an account. Infact, it would just as hard even if you did. Unless you really think you can write a script or app to crack 3DES. As it is, 90% of cryptanalysts can't crack /bin/crypt, which is nothing more than a digitized enigma machine. (Do a search through the archives for my username and key words like cryptography for more details, or just ask Happy Scrappy)

In this case Ryker, your only choice is a brute force attempt at cracking her password. I would write a quick perl script (you can try java if you like) that runs through a collective hacker dictionary.
This will take a long time and would probably not be worth the time or effort.

Yahoo does in fact, log failed attempts for their e-mail accounts. But they do not lock accounts when they see it, they simply log the attempt. Why bother doing anything else? They realize that the bulk of their users have opened an account with them simply as a decoy inbox to divert spam to. Although of course this is in violation of their EULA.
This in fact, would not even be considered illegal since she is trying to get into her legitimate account.

There are of course several other ways, but I doubt you will find someone willing to root yahoo.com. I would suggest your friend simply get a new account. But she can petition yahoo to get into her inbox, I have heard it is difficult though.

 

[ryker77]

I'm not trying to crack her password. Just need to find her answer to for her challenge answer. This would give her passwrod back.

And yes she tried yahoo and they said thiers no way they can find out her answer.

 

[r00+]

Huh?

They HAVE to be able to check her challenge/response answer.

Otherwise, there's no reason for it.

E-mail me at [email protected] with some more details. I have a a couple friends at yahoo (unless they've been laid off).

 

[Parabellum]

r00+ is right use brute force, goto http://astalavista.box.sk
You'll find everything you need there and more.