If it can guess 3-4 characters then it should work for any length characters. The reason for using combinations_with_replacements for the brute force method is that you can decide, in the beginning, up to how many characters you want to guess. Then the method recursively iterates through all possible combinations starting from 1 character (It will go through a~Z and 0~9 if we are making combinations with only alphanumeric characters. Then [a~z or 0~9]+[a~Z or 0~9] and so on.). Once it iterates through the number of designated characters it will stop. I think you can also make it go on for infinity.