Password-cracking traffic can be detected by observing numerous error messages from a target host directed to a client that repeatedly and unsuccessfully attempts to log in. There are two general types of password cracking attempts:
Both of these types are often thwarted by login security measures that lock out an account after a short number of failed login attempts.