{"id":40898,"date":"2021-05-12T17:00:00","date_gmt":"2021-05-12T17:00:00","guid":{"rendered":"https:\/\/www.darkreading.com\/application-security\/hashes-salts-and-rainbow-tables-confessions-of-a-password-cracker\/a\/d-id\/1340928"},"modified":"2021-05-12T17:00:00","modified_gmt":"2021-05-12T17:00:00","slug":"hashes-salts-and-rainbow-tables-confessions-of-a-password-cracker","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/hashes-salts-and-rainbow-tables-confessions-of-a-password-cracker\/","title":{"rendered":"Hashes, Salts, and Rainbow Tables: Confessions of a Password Cracker"},"content":{"rendered":"<div><img decoding=\"async\" src=\"https:\/\/img.deusm.com\/darkreading\/dr_staff_125x125.jpg\" class=\"ff-og-image-inserted\"><\/div>\n<header><\/header>\n<p><span class=\"strong black\">Understanding a few basics about how password crackers think and behave could help you keep your users safer. <\/span><\/p>\n<p class>If you&#8217;ve ever watched TV and movies about cybersecurity, you probably envision someone sitting in a dark room trying to guess someone else&#8217;s password based on a few facts like their kids&#8217;&nbsp;names or favorite sports team.&nbsp;<\/p>\n<p>Even <em>Mr. Robot<\/em>, renowned for its realistic portrayal of technology, is&nbsp;<a href=\"https:\/\/www.youtube.com\/watch?v=o28LVrm3HkU\" target=\"_blank\" rel=\"noopener noreferrer\">guilty of showing password cracking this way<\/a>.&nbsp;<\/p>\n<p>While targeted attacks on individuals using personal information and social engineering do happen, they are not the norm.&nbsp;These portrayals&nbsp;might give people a false sense of security&nbsp;because they don&#8217;t think their accounts are valuable or they would get locked after a few wrong guesses.<\/p>\n<p>In reality, cybercriminals generally aren&#8217;t&nbsp;guessing&nbsp;passwords for one person, and accounts do get locked after inputting the wrong password. That wouldn&#8217;t be a very effective or efficient way to break into enough accounts to make a substantial profit.&nbsp;<\/p>\n<p>Once a site has been breached, threat actors often share the leaked users&#8217; files&nbsp;from that site. The file typically contains each line in the database associated with a user&nbsp;\u2014 e.g., email, username, password_hash, etc. The leaks to many sites, large and small, are posted on hacking forums where other&nbsp;criminals&nbsp;and ethical security researchers race to analyze and crack the hashes in the file. &nbsp;<\/p>\n<p>A hash is a representation of the password created after running&nbsp;it&nbsp;through a hashing algorithm. There are a variety of these algorithms&nbsp;(including&nbsp;SHA1, MD5,&nbsp;and Bcrypt), and they vary in their complexity.&nbsp;When the password&nbsp;&#8220;123456&#8221; is hashed, it may be stored as &#8220;e10adc3949ba59abbe56e057f20f883e.&#8221;&nbsp;Every unique password has a unique hash, but each algorithm converts each password to the same hash, assuming it&#8217;s not salted. In other words, &#8220;123456&#8221; will always be hashed as &#8220;e10adc3949ba59abbe56e057f20f883e&#8221; with MD5.<\/p>\n<p>Sometimes this gets explained as encryption, but encryption works in two directions&nbsp;\u2014 encryption and decryption. If you know the cipher for something that is encrypted, you can reverse it to decrypt the data. Hashes only go one direction. You can&#8217;t take the hash &#8220;e10adc3949ba59abbe56e057f20f883e&#8221; and reverse the code to get back to &#8220;123456.&#8221;<\/p>\n<p>Instead, password cracking&nbsp;compares&nbsp;two hashes to&nbsp;find matches. You&nbsp;generate&nbsp;hashes using known plaintext words to see if the hash ever matches the hash that you are trying to crack. When the hash matches, you have cracked the password.&nbsp;<\/p>\n<p>In the early days, crackers relied on rainbow tables, which are lists of hashes and associated plaintext passwords. If they&nbsp;knew&nbsp;a hash and wanted&nbsp;to see&nbsp;the&nbsp;associated password, they simply compared&nbsp;the known hashes in their rainbow table with hashes in the database&nbsp;to find matches.&nbsp;But&nbsp;rainbow tables are incredibly large and require a lot of hard drive space.&nbsp;<\/p>\n<p>One tactic companies use to deter rainbow table attacks is to add additional characters, called a salt, to the beginning or end of the password before it gets hashed. The salt is typically unique to each user, so if two people on that site have the same password, their salts would be different,&nbsp;resulting in different hashes.&nbsp;<\/p>\n<p>In addition to salts, there are also peppers,&nbsp;a random bit of data added to the password before it gets hashed. Unlike salts, peppers&nbsp;are&nbsp;not stored in the database with the hash.&nbsp;They&nbsp;are hardcoded into the&nbsp;website&#8217;s source code.&nbsp;<\/p>\n<p>Even with&nbsp;salts and peppers, passwords can be cracked.&nbsp;Password crackers&#8217; success&nbsp;often&nbsp;comes down to time and computing power. Nearly any password,&nbsp;regardless&nbsp;how long or complex, can be cracked with enough time and processing strength.&nbsp;<\/p>\n<p>In its infancy, password cracking worked like I explained above. Password crackers used CPUs to mathematically generate possible hashes. Or they&#8217;d&nbsp;match&nbsp;known hashes&nbsp;to the passwords&nbsp;on the rainbow table.<\/p>\n<p>Today, brute force attacks are more common. Crackers use GPUs, which are often associated with gamers and cryptocurrency&nbsp;miners because, while they can&#8217;t do complicated math, they can run simple calculations on a large scale. A CPU can do complex calculations very fast but&nbsp;is&nbsp;limited by cores and threads. A GPU has thousands of less complex cores or mini-processors that can generate a hash very quickly. Where a CPU could guess 20,000 combinations per second, a GPU can do&nbsp;6&nbsp;million per second.&nbsp;<\/p>\n<p>In a brute-force attack, the cracker would use the GPU to run all the combinations of letters, numbers,&nbsp;and characters until it figures out the right one. Even&nbsp;with a salt making&nbsp;it more difficult, a GPU with enough time will crack it&nbsp;if&nbsp;the salt is known.<\/p>\n<p>If you started reading with the idea that your password is solid and unbreakable, I hope that you have a more realistic opinion now. No one can predict when an attacker might steal data from a site where you have an account. The best thing you can do is be ready for when it does&nbsp;\u2014 and it is a matter of when, not if. Protect yourself with unique passwords at least 16 characters and a combination of letters, numbers,&nbsp;and symbols for each account, and keep track of your logins in a password manager.&nbsp;And when you find out a site that you use has been breached, take it seriously and change your password immediately.&nbsp;<\/p>\n<p><span class=\"italic\">Keira Stevens is manager of the Human Intelligence (HUMINT) team at SpyCloud. For over 10 years, she has worked in information security on both red and blue teams and assisting law enforcement to identify criminals. Password cracking is a hobby and passion for Keira, as well &#8230; <a href=\"https:\/\/www.darkreading.com\/author-bio.asp?author_id=5782\">View Full Bio<\/a><\/span><\/p>\n<p><strong>Recommended Reading:<\/strong><\/p>\n<p><span class=\"smaller strong red allcaps\">More Insights<\/span><\/p>\n<p>Read More <a href=\"https:\/\/www.darkreading.com\/application-security\/hashes-salts-and-rainbow-tables-confessions-of-a-password-cracker\/a\/d-id\/1340928?_mc=rss_x_drr_edt_aud_dr_x_x-rss-simple\">HERE<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Understanding a few basics about how password crackers think and behave could help you keep your users safer. Read More <a href=\"https:\/\/www.darkreading.com\/application-security\/hashes-salts-and-rainbow-tables-confessions-of-a-password-cracker\/a\/d-id\/1340928?_mc=rss_x_drr_edt_aud_dr_x_x-rss-simple\">HERE<\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_layout":"default_layout","footnotes":""},"categories":[151],"tags":[],"class_list":["post-40898","post","type-post","status-publish","format-standard","hentry","category-darkreading-ti"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.7 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Hashes, Salts, and Rainbow Tables: Confessions of a Password Cracker 2026 | ThreatsHub Cybersecurity News<\/title>\n<meta name=\"description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.threatshub.org\/blog\/hashes-salts-and-rainbow-tables-confessions-of-a-password-cracker\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Hashes, Salts, and Rainbow Tables: Confessions of a Password Cracker 2026 | ThreatsHub Cybersecurity News\" \/>\n<meta property=\"og:description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.threatshub.org\/blog\/hashes-salts-and-rainbow-tables-confessions-of-a-password-cracker\/\" \/>\n<meta property=\"og:site_name\" content=\"ThreatsHub Cybersecurity News\" \/>\n<meta property=\"article:published_time\" content=\"2021-05-12T17:00:00+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/img.deusm.com\/darkreading\/dr_staff_125x125.jpg\" \/>\n<meta name=\"author\" content=\"TH Author\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatshub\" \/>\n<meta name=\"twitter:site\" content=\"@threatshub\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"TH Author\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"5 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/hashes-salts-and-rainbow-tables-confessions-of-a-password-cracker\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/hashes-salts-and-rainbow-tables-confessions-of-a-password-cracker\\\/\"},\"author\":{\"name\":\"TH Author\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\"},\"headline\":\"Hashes, Salts, and Rainbow Tables: Confessions of a Password Cracker\",\"datePublished\":\"2021-05-12T17:00:00+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/hashes-salts-and-rainbow-tables-confessions-of-a-password-cracker\\\/\"},\"wordCount\":1037,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/hashes-salts-and-rainbow-tables-confessions-of-a-password-cracker\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/img.deusm.com\\\/darkreading\\\/dr_staff_125x125.jpg\",\"articleSection\":[\"DarkReading |TI\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/hashes-salts-and-rainbow-tables-confessions-of-a-password-cracker\\\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/hashes-salts-and-rainbow-tables-confessions-of-a-password-cracker\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/hashes-salts-and-rainbow-tables-confessions-of-a-password-cracker\\\/\",\"name\":\"Hashes, Salts, and Rainbow Tables: Confessions of a Password Cracker 2026 | ThreatsHub Cybersecurity News\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/hashes-salts-and-rainbow-tables-confessions-of-a-password-cracker\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/hashes-salts-and-rainbow-tables-confessions-of-a-password-cracker\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/img.deusm.com\\\/darkreading\\\/dr_staff_125x125.jpg\",\"datePublished\":\"2021-05-12T17:00:00+00:00\",\"description\":\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/hashes-salts-and-rainbow-tables-confessions-of-a-password-cracker\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/hashes-salts-and-rainbow-tables-confessions-of-a-password-cracker\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/hashes-salts-and-rainbow-tables-confessions-of-a-password-cracker\\\/#primaryimage\",\"url\":\"https:\\\/\\\/img.deusm.com\\\/darkreading\\\/dr_staff_125x125.jpg\",\"contentUrl\":\"https:\\\/\\\/img.deusm.com\\\/darkreading\\\/dr_staff_125x125.jpg\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/hashes-salts-and-rainbow-tables-confessions-of-a-password-cracker\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Hashes, Salts, and Rainbow Tables: Confessions of a Password Cracker\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"name\":\"ThreatsHub Cybersecurity News\",\"description\":\"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"alternateName\":\"Threatshub.org\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\",\"name\":\"ThreatsHub.org\",\"alternateName\":\"Threatshub.org\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"width\":432,\"height\":435,\"caption\":\"ThreatsHub.org\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/threatshub\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\",\"name\":\"TH Author\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"caption\":\"TH Author\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Hashes, Salts, and Rainbow Tables: Confessions of a Password Cracker 2026 | ThreatsHub Cybersecurity News","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.threatshub.org\/blog\/hashes-salts-and-rainbow-tables-confessions-of-a-password-cracker\/","og_locale":"en_US","og_type":"article","og_title":"Hashes, Salts, and Rainbow Tables: Confessions of a Password Cracker 2026 | ThreatsHub Cybersecurity News","og_description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","og_url":"https:\/\/www.threatshub.org\/blog\/hashes-salts-and-rainbow-tables-confessions-of-a-password-cracker\/","og_site_name":"ThreatsHub Cybersecurity News","article_published_time":"2021-05-12T17:00:00+00:00","og_image":[{"url":"https:\/\/img.deusm.com\/darkreading\/dr_staff_125x125.jpg","type":"","width":"","height":""}],"author":"TH Author","twitter_card":"summary_large_image","twitter_creator":"@threatshub","twitter_site":"@threatshub","twitter_misc":{"Written by":"TH Author","Est. reading time":"5 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.threatshub.org\/blog\/hashes-salts-and-rainbow-tables-confessions-of-a-password-cracker\/#article","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/hashes-salts-and-rainbow-tables-confessions-of-a-password-cracker\/"},"author":{"name":"TH Author","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476"},"headline":"Hashes, Salts, and Rainbow Tables: Confessions of a Password Cracker","datePublished":"2021-05-12T17:00:00+00:00","mainEntityOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/hashes-salts-and-rainbow-tables-confessions-of-a-password-cracker\/"},"wordCount":1037,"commentCount":0,"publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/hashes-salts-and-rainbow-tables-confessions-of-a-password-cracker\/#primaryimage"},"thumbnailUrl":"https:\/\/img.deusm.com\/darkreading\/dr_staff_125x125.jpg","articleSection":["DarkReading |TI"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.threatshub.org\/blog\/hashes-salts-and-rainbow-tables-confessions-of-a-password-cracker\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.threatshub.org\/blog\/hashes-salts-and-rainbow-tables-confessions-of-a-password-cracker\/","url":"https:\/\/www.threatshub.org\/blog\/hashes-salts-and-rainbow-tables-confessions-of-a-password-cracker\/","name":"Hashes, Salts, and Rainbow Tables: Confessions of a Password Cracker 2026 | ThreatsHub Cybersecurity News","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/hashes-salts-and-rainbow-tables-confessions-of-a-password-cracker\/#primaryimage"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/hashes-salts-and-rainbow-tables-confessions-of-a-password-cracker\/#primaryimage"},"thumbnailUrl":"https:\/\/img.deusm.com\/darkreading\/dr_staff_125x125.jpg","datePublished":"2021-05-12T17:00:00+00:00","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","breadcrumb":{"@id":"https:\/\/www.threatshub.org\/blog\/hashes-salts-and-rainbow-tables-confessions-of-a-password-cracker\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.threatshub.org\/blog\/hashes-salts-and-rainbow-tables-confessions-of-a-password-cracker\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/hashes-salts-and-rainbow-tables-confessions-of-a-password-cracker\/#primaryimage","url":"https:\/\/img.deusm.com\/darkreading\/dr_staff_125x125.jpg","contentUrl":"https:\/\/img.deusm.com\/darkreading\/dr_staff_125x125.jpg"},{"@type":"BreadcrumbList","@id":"https:\/\/www.threatshub.org\/blog\/hashes-salts-and-rainbow-tables-confessions-of-a-password-cracker\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.threatshub.org\/blog\/"},{"@type":"ListItem","position":2,"name":"Hashes, Salts, and Rainbow Tables: Confessions of a Password Cracker"}]},{"@type":"WebSite","@id":"https:\/\/www.threatshub.org\/blog\/#website","url":"https:\/\/www.threatshub.org\/blog\/","name":"ThreatsHub Cybersecurity News","description":"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform","publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"alternateName":"Threatshub.org","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.threatshub.org\/blog\/#organization","name":"ThreatsHub.org","alternateName":"Threatshub.org","url":"https:\/\/www.threatshub.org\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","width":432,"height":435,"caption":"ThreatsHub.org"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/threatshub"]},{"@type":"Person","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476","name":"TH Author","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","caption":"TH Author"}}]}},"_links":{"self":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/40898","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/comments?post=40898"}],"version-history":[{"count":0,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/40898\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media?parent=40898"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/categories?post=40898"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/tags?post=40898"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}