Attack methods

Explore the 7 attack methods modelled by Time2Crack.

Always test all possible combinations of characters until you find the password. Exhaustive but very expensive in time for long passwords.

Test common words and disclosed password lists (HIBP). Very effective on weak passwords based on real words.

Combines dictionary attack with mutations (addition of numbers, symbols, variations). Captures simple variations of common words.

Targets predictable structures (e.g. uppercase + lowercase + digits at the end). Exploits common human password creation patterns.

Probabilistic model based on Markov strings. Learn common character sequences in real passwords to test them first.

Probabilistic Context-Free Grammar. Analyses the grammatical structures of human passwords to generate the most likely variants first.

Concate dictionary words to create passphrases. Effective on multi-word passwords like "correct-horse-battery-staple".