PwlTool v4.0	password recovery tools for MS Windows 95/98
(c) 1998 Vitas Ramanchauskas & Eugene Korolev, vitas@webdon.com, v-t-s@usa.net
HOME RePwl Vitas' site License Register now TechNotes Setup FAQ Bug Report

RePwl

Setup

Unfortunately there is no full-functional setup program currently available. You should unpack RePwl files into desired directory and run prepare.exe program that will register RePwl in the registry. You need to run it only once.

Commercial version only:: You will be asked for serial number at first run. If you reinstall windows or move the program to another computer you will need for this number again. Please do not distribute the number!

**File List**
readme.txt	instructions how to view this documentation
repwl.htm	this file
repwl.exe	main program
repwl.dat	charset string for repwl
public.key	need for repwl.exe, do not delete!
pwlshell.dll	shell extension DLL for Windows Explorer.
prepare.exe	mini setup program. Run it only once.

Usage. How to...

...see cached passwords for current user (user must be logged in): just run RePwl. You'll see all cached passwords in 'cached passwords' text box.

...see cached passwords for another user (login password is known): enter user name and known password. Leave 'PWL file' field empty. Press 'CheckPassword' button.

...see cached passwords stored in PWL file from another computer (login password is known): select PWL file (use Browse button or enter full file name manually). Adjust user name if necessary. Enter known login password. Press 'CheckPassword' button.

...find unknown login password: select PWL file (use Browse button or enter full file name manually). Adjust user name if necessary. Now you may use dictionary search ('dictionary' button, registered version only) or linear search (also known as brute force attack) (SearchPassword button).

Dictionary search (available in registered version only).
The point is that passwords are made up by living people, and many people are alike. Therefore people use some words more frequently than others. Frequency dictionaries list the most popular words. Good dictionaries contain hundreds thousand words. Remember that a good frequency dictionary is not just a plain dictionary. A usual dictionary does not contain names of corporations, movie titles, trademarks etc. A good frequency dictionary is composed of actual passwords made up by people just like you. Dictionary search is fast enough (even with huge dictionary). So try dictionary search first!

Make sure that dictionary file named dict.txt resides in the same directory with RePwl. There are no dictionaries included into RePwl package. Download relatively small (~80 Kb compressed) dictionary from http://webdon.com/DownLoad/DIC1.ZIP or huge (~9 Mb compressed) http://www.kull.ch/Bauersachs/download/allwords2.zip .

Important! Make sure that all words in dictionary are in upper case. Use any text editor to capitalize it if necessary.

Linear Search (brute force attack).
Set maximum password length (5 by default) and character set (A-Z by default) and press SearchPasswordFast button. Note that Windows capitalizes all passwords. Note that RePwl does not check for empty login password condition. You may spend a lot of time for search while it is not necessary at all. Press 'CheckPassword' button to check empty password.

The password search time with respect to the password and charset size. This is the time we have to wait to get a password in the worst case. In the 'best case' the very first password will be the right one. The probability to find a password during the time of t equals to p=t/T, for example, a probability to find the password during the half of time indicated equals to 50%.
The search speed is supposed equal to 50,000 passwords per second (Pentium-200).
psw length / charset	26 (letters only)	36 (letters & digits)	70 (all printable)
4	instantly	instantly	8 minutes
5	4 minutes	20 minutes	9 hours
6	100 minutes	12 hours	27 days
7	45 hours	18 days	5 years
8	24 days	21 months	371 years
9	48 days	65 years	26,000 years

Controls description

Zombie mode: when checked RePwl won't spend time for user interface during password search. So you won't see neither progress bar nor 'Cancel' button. To terminate RePwl in zombie mode press Ctrl-Alt-Del, select RePwl in task list and terminate it. This is the only way. Moreover, in zombie mode RePwl runs at higher priority, so you may have problems with multitasking environment (other tasks may slow down significantly). As a result, RePwl works faster in zombie mode.

CheckUser: Enter user name and press this button to learn whether the user is registered in the system.

SearchPassword vs SearchPasswordFast: 'SearchPassword' button comes from the past. It uses standard (but undocumented) Windows API for password search. It works slow (like demo version). Moreover, it will work only with PWL files that registered in the system (listed in system.ini file). Normally you should use SearchPasswordFast button. It does not use Windows API and works at highest possible speed. It seems that there are no ways to speed up it more...
Status indicators: display last found password, elapsed time (h:m:s:ms) and search speed.

Tips

You can also double click PWL file in Windows Explorer to open it.
Also additional property page now available for PWL files (right click in Explorer and select Properties to see).

Thank you once more for registration!
As a registered user you will receive program updates for FREE. If you have any questions, please feel free to ask.

Some WEB Links:

http://webdon.com/vitas author's home page

http://webdon.com/vitas/pwltool.htm PwlTool home page

http://webdon.com/vitas/psw.htm All about passwords. How to choose and how to recover.

http://webdon.com/vitas/pwl.htm About PWL files.

http://webdon.com/vitas/softmare.htm Security related stuff.