Skip to main content
Constitution and code of ethics
Annual general meetings
Financial Reports (Members Only)
Australian Cyber Security Magazine
Corporate partner policy
Want to Speak at an AISA Event?
National Conference 2018
Perth Conference 2017
Perth Conference 2016
National Conference 2017
National Conference 2016
National Conference 2015
National Conference 2014
National Conference 2013
National Conference 2012
National Conference 2011
National Conference 2010
National Conference 2009
News and media
AISA in the news
Brisbane Branch news
National Newsletters (Members only)
Ask an expert
Email legal notice
Share this page
Share on Facebook
Share on Twitter
Share on LinkedIn
(ISC)2 Melbourne Chapter Meeting - June 20th, 2017
Wonderful World of p455w0rd cr4ck1n6: Password cracking is now more affordable than ever and can be approached using consumer hardware or cheap cloud services.
Presentation: Wonderful World of p455w0rd cr4ck1n6
Serious password cracking power is now much more affordable and within reach of adversaries. Complex password policies have been developed in attempt to ensure passwords are harder to crack, but do they really address the issue?
In this presentation, we will explore current techniques behind storing password hashes as well as how cracking these passwords may be possible on consumer hardware, or even a cheap cloud server with access to a GPU. We will discuss different attack methods and detail the budget an attacker would require to access the required hardware - often much cheaper than you think!
The presentation will include a live password cracking demo and a discussion on more attack resistant password storage methods.
What’s Cool About this Presentation?
Recently there have been many large attacks and database leaks where password hashes have become available online. These password databases did not survive very long before being cracked. This presentation is unique in that it discusses these issues, how the attacks are carried out, includes a live demo of an attack, as well as addressing how to better store passwords in the future.
John Gerardos is a security consultant with more than 10 years’ experience who loves to make stuff, break stuff and fix stuff. John can usually be found researching the latest security topics, tinkering with random objects or roaming around security conferences. As well as his day job, John actively participates within the information security community. He regularly attends security conferences, run several security training sessions and workshops and has led a University’s information security student group for 3 years.
John holds a Bachelor’s Degree in Computer Science and has commenced the Masters of Applied Science (Information Security and Assurance) at RMIT University. This is supplemented by Cisco Certified Network Associate (CCNA) and Cisco Certified Network Professional (CCNP) training, as well as IT Infrastructure Library (ITIL) certification.
Full details and to register:
6/20/2017 5:30 PM - 7:30 PM
Norman Disney & Young 115 Batman Street West Melbourne, VIC AUSTRALIA
Keep me signed in
I don't know my
Create a new account