Originally Posted by Fou-Lu
Still doesn't reverse it, it will only find a match which may or may not be the original.
Any programmer worth their weight in salt (pun intended) wouldn't leave a password with a single level of hashing; a simple salt is added and rainbow tables are now useless.
Thanks for the salt reminder, I had not pointed that out. If those are passwords with hashes.
But remember that I pointed out that he should try Rainbow tables of Dictionary words and commonly used passwords. Of course if there is no match at all, he'll conclude that the programmer used a salt.
Secondly, not every programmer even those in big organizations use salts. Some even leave them in plaintext
. So rainbow tables is worth a try and with todays computing power and graphics processing cards, doing that is only a matter of hours if not minutes even for a desktop computer. So it's still worth a try.