Skip to content
View in the app

A better way to browse. Learn more.

Tip.It Forum

A full-screen app on your home screen with push notifications, badges and more.

To install this app on iOS and iPadOS
  1. Tap the Share icon in Safari
  2. Scroll the menu and tap Add to Home Screen.
  3. Tap Add in the top-right corner.
To install this app on Android
  1. Tap the 3-dot menu (⋮) in the top-right corner of the browser.
  2. Tap Add to Home screen or Install app.
  3. Confirm by tapping Install.

My thoughts with PASSWORDS and helpful info.

Featured Replies

This is something I've been doing on my spare time, and before anyone jumps to conclusion, the research I did was based solely on Whitehat morals. This basically means I try/use hacking software on test dummies for the sake of internet security.

 

 

 

So, this is what I've come to conclusion. If you use any ENGLISH word(s), regardless if you have numbers in your password, you are very, very vulnerable.

 

 

 

There are 3 main attacks a hacker will use. A dictionary attack, a hybrid attack, or a bruteforce attack. In runescape, or any other major online game/website, your biggest worries are dictionary attacks and hybrid attacks. A dictionary attack will try the most commonly used word(s) in a password, if not cracked, it will begin to try every word in a word list you supply. (This is where you are at an advantage and I will explain later.) Hybrid attacks are the same as dictionary attacks, except numbers are added.

 

 

 

As a default, a loooot of these password cracking programs come with ENGLISH word lists that were copied from large dictionaries. What my idea is this, use words from other languages. Hell, mix up words from different languages. I've never seen anyone use word lists from more than a single ditionary...assuming the target is a Runescape account. If its anything more, than the hacker has bigger fish to fry...

 

 

 

For example, my password contains two hawaiian words and one english word.

 

 

 

This is just something I though I'd like to share with everyone.

 

Promise

 

 

 

I would like to add, do not use the same password for anything. So someone may not try to crack your password for runescape first, maybe your AIM account, and then use that password and try it with your runescape account.

Mine is like 25 lettered with hebrew, arabic, persian, and swedish mixed in. GOOD LUCK HACKERS LOL

  • Author

Well, I didn't talk about brute force attacks. Theoretically, any password can be cracked. All you need is time. The great thing is, it would be a waste of time and effort if you used it on Runescape.

Do dictionary attackers just try single words? By single I mean words that are separate. (e.g 'cat' as opposed to 'catdog')

 

 

 

Surely by combining more than one word and placing letters throughout the words e.g "c0ot1esf0rev3r" would be enough?

10postchm2105.png

8,180

WONGTONG IS THE BEST AND IS MORE SUPERIOR THAN ME

#1 Wongtong stalker.

Im looking for some No Limit soldiers!

  • Author
Do dictionary attackers just try single words? By single I mean words that are separate. (e.g 'cat' as opposed to 'catdog')

 

 

 

Surely by combining more than one word and placing letters throughout the words e.g "c0ot1esf0rev3r" would be enough?

 

 

 

It really just depends on the software and the hacker. Multiple words can be used, along with internet slang such as leet speak.

 

 

 

But words that don't exist in any dictionary, combined with numbers should be safe (against dictionary and hybrid attacks), assuming its at least 6 digits.

Kills me you keep calling these wanna-bees 'hackers'. Talking Runescape, you can't do these sort of cracking on the RS servers (it'll most likely ban your IP after a few failed tries), and the likelihood of getting a hold of the files that actually have the hashes is in question as well.

 

Anyways, as mentioned, it's a bad idea having your password a dictionary word - because it takes half a second to compare the whole book to your pass - but random English letters are just fine.

 

Just for the record, a 12-chars password consisting of English letters and numbers has 4,738,381,338,321,616,896 variations, plenty to cover any brute force attacks.

zj7y4z.gif

DeeKay.png

  • Author
Kills me you keep calling these wanna-bees 'hackers'. Talking Runescape, you can't do these sort of cracking on the RS servers (it'll most likely ban your IP after a few failed tries), and the likelihood of getting a hold of the files that actually have the hashes is in question as well.

 

Anyways, as mentioned, it's a bad idea having your password a dictionary word - because it takes half a second to compare the whole book to your pass - but random English letters are just fine.

 

Just for the record, a 12-chars password consisting of English letters and numbers has 4,738,381,338,321,616,896 variations, plenty to cover any brute force attacks.

 

 

 

What should I call them then?

 

 

 

Yeah, you can't do these sorts of things on runescape, but looooots of people use the same password for everything. But other websites they go on maybe attacked with a hybrid attack.

 

 

 

You can definitely have a 12 random digit password, have fun looking for that tiny little piece of paper you wrote it on. IMO, my methods seems more practical.

 

 

 

I should probably throw it in the OP not to use the same password.

This is great information for those who are less knowledable on hacking. Jagex put in place a limit on tries to get your password. I think after five tries, you have to wait to try again and eventually the account gets locked.

wii_wheaton.png

[software Engineer] -

[Ability Bar Suggestion] - [Gaming Enthusiast]

  • Author

If you haven't already, please read previous post. We don't have to hack a person's runescape account to get their password.

I guess I'm safe the first 5 characters are numbers and the rest are initials and special letters ( I have a Spanish keyboard so I can use the letter ñ ). Unless the person knows me they have absolutely no way to know the initials. (It's not my name but rather a mixture of the first letter of names and words). Hmm I have a 14 character password....

Wongton is better than me in anyway~~

 

94qbe.jpg

wizzkid785,

 

 

 

You basically gave away you password right there...

Stellactic.gif
This is something I've been doing on my spare time, and before anyone jumps to conclusion, the research I did was based solely on Whitehat morals. This basically means I try/use hacking software on test dummies for the sake of internet security.

 

 

 

So, this is what I've come to conclusion. If you use any ENGLISH word(s), regardless if you have numbers in your password, you are very, very vulnerable.

 

 

Interesting read. I liked it and i agree with you. Let's just hope there is not a genius hacker with a very advanced program out there...

 

 

 

There is probably, but few i bet.

wizzkid785,

 

 

 

You basically gave away you password right there...

 

 

 

You have 1 of the 14 characters [wagon]. Good luck from there.

bling3.png

[blingkachi50]

It would suck if I got hacked. I am confident in my password, but in the event my RS account was hacked, I would just move on in life. It's just a game...

Big_Stingman.png
  • Author
This is something I've been doing on my spare time, and before anyone jumps to conclusion, the research I did was based solely on Whitehat morals. This basically means I try/use hacking software on test dummies for the sake of internet security.

 

 

 

So, this is what I've come to conclusion. If you use any ENGLISH word(s), regardless if you have numbers in your password, you are very, very vulnerable.

 

 

Interesting read. I liked it and i agree with you. Let's just hope there is not a genius hacker with a very advanced program out there...

 

 

 

There is probably, but few i bet.

 

 

 

Well, lets put it this way. The technology is available, but a game isn't what they have in mind. Big targets are gambling websites, like during super bowl, pro bowl, and other big sporting events where lots of online gambling takes place.

This is something I've been doing on my spare time, and before anyone jumps to conclusion, the research I did was based solely on Whitehat morals. This basically means I try/use hacking software on test dummies for the sake of internet security.

 

 

 

So, this is what I've come to conclusion. If you use any ENGLISH word(s), regardless if you have numbers in your password, you are very, very vulnerable.

 

 

Interesting read. I liked it and i agree with you. Let's just hope there is not a genius hacker with a very advanced program out there...

 

 

 

There is probably, but few i bet.

 

Yeah there is, but no one with that advanced of a program would use it to hack runescape accounts :lol:

 

 

 

My pass is a bunch of random numbers and letters :thumbup:

I just think of a random sentence that means nothing and replace about half the letters with numbers( a.k.a. , leetspeak).

 

 

 

Easy to remember too.

I have a 10 random letter/number password with the letters strategically spread over my keyboard so it's fast to type :P

2dvjurb.png
Mine is like 25 lettered with hebrew, arabic, persian, and swedish mixed in. GOOD LUCK HACKERS LOL

 

 

 

Cough keylogger.

O.O

My password is only 7 characters long but I assure you that it is a mix of both numbers and a bunch of randomly selected alphabets.

 

 

 

Can't remember how I managed to come up with that, but I definitely feel that it is safe.

00:00:05

00:00:04

00:00:03

00:00:02

00:00:01

00:00:00

 

Break the Walls down!

  • Author
I have a 10 random letter/number password with the letters strategically spread over my keyboard so it's fast to type :P

 

 

 

Depending on the software you download, the wordlist it comes with normally has basic to advanced keyboard patterns such as:qwerty, qzwxec, etc.

 

 

 

So, don't make it too obvious.

I have a 10 random letter/number password with the letters strategically spread over my keyboard so it's fast to type :P

 

 

 

Depending on the software you download, the wordlist it comes with normally has basic to advanced keyboard patterns such as:qwerty, qzwxec, etc.

 

 

 

So, don't make it too obvious.

 

Nah, they're still random, but I've composed it in such a way the letters/numbers switch between being on the left and on the right side of the keyboard.

2dvjurb.png

Thus my runescape password isn't any english word. Or any particular pattern, just a random selection of letters and numbers I memorised ;)

bsmovies.png

25 Digit number password that I'm not even sure what the numbers are. C-C-COMBO on the numpad ;)

top_lel_face.png

Guest
This topic is now closed to further replies.

Important Information

By using this site, you agree to our Terms of Use.

Account

Navigation

Search

Search

Configure browser push notifications

Chrome (Android)
  1. Tap the lock icon next to the address bar.
  2. Tap Permissions → Notifications.
  3. Adjust your preference.
Chrome (Desktop)
  1. Click the padlock icon in the address bar.
  2. Select Site settings.
  3. Find Notifications and adjust your preference.