by aestetix

What are rainbow tables?

A rainbow table is a lookup table designed to help recover plaintext from a one-way hash. It is created by collecting all possible (in theory) plaintexts of a specific nature (length, character set) and their respective outputs from a hash function. In short, it's a code book for a hash function. These tables can then be used to run quick brute-force attacks against hashes. Due to their nature, rainbow tables are very large (ranging from 500 megs to 40 gigs), and take many days to compute, depending on processor speed. This is known as a time-memory tradeoff because it consumes enormous time to create, but once they are created password recovery is -very- quick.

For more information, check out:
"A Cryptanalytic Time-Memory Trade-Off" (Marty Hellman)
"Making a Faster Cryptanalytical Time-Memory Trade-Off" (Philippe Oechslin)

There are also a few active rainbow table projects:
http://www.antsight.com/zsl/rainbowcrack/ (tools to create your own rainbow tables)
http://rainbowcrack.com/ (contribute to a world-wide effort to create rainbow tables)
http://rainbowtables.shmoo.com/ (rainbow tables of different sizes, compliments of Shmoo group)

 

 
Read more of   The Yak's Frequently Questioned Answers   (mod.2008-11-08)

***445.   How do I extract tcpdump / wireshark / lib pcap formatted data from snort unified logs using barnyard?   [n0b0dy/2008-11-08]
409.   What is a nice tip for automating updates on debian systems?   [jake/2004-03-30]
404.   How can I limit the ammount of bandwidth rsync over ssh (or anything else) uses, without a complicated firewall solution?   [leif/2004-02-06]
394.   I've heard of RTFM, but what does STFW mean?   [matt/2003-11-12] ( matthew/2004-08-11 )
366.   What is a really good german street map website?   [jake/2003-07-10]
344.   Why are you upset?   [jake/2003-01-29]
305.   Why was strick's workstation at Versant named GWARN?   [strick/2002-01-23]
288.   Where does the smell of rain originate from?   [rupe/2001-11-20]
199.   Where can I find pictures of cool PC cases?   [rupe/2001-03-13]
173.   What's in the strawberry flavouring of a Burger King Milkshake?   [rupe/2001-02-06]
169.   Where does The YAK go out to eat?   [strick/2001-04-24] ( combee/2001-05-29 )
163.   What is the easiest way to pause execution of a program in java, without threads?   [jesse/2001-01-13]
153.   Where can I find Windows drivers for the Baystack 660 802.11 PC Card?   [rupe/2000-12-22]
151.   How can I tell ICANN to screw off?   [fury/2000-12-09]
126.   How can I distribute the DeCSS algorithm via DNS?   [rupe/2000-09-28]
121.   What time is it?   [rupe/2000-09-18] ( josh/2001-04-03 strick/2001-03-10 )
85.   What's another good PCS email utility?   [rupe/2001-03-28]
69.   What is the origin of The Yak?   [strick/2000-02-28]
32.   What are the 'mailer' flags (on the M lines) inside sendmail.cf ?   [strick/2000-01-25]
27.   What is Bleech made from   [vonguard/2000-01-23] ( rupe/2001-05-30 )