Passwords play a major role in securing various applications. It is used for authentication in Operating system login, web services, ATM machines and many more. Even though we educate the end users to choose a complex password, there are several attacks that can break through such password. In this paper, we provide a comparative analysis of USB based and software-based attacks on passwords. We provide a comparison of various types of software-based attacks, USB based attacks and tools used for password attacks. As Windows is the most popular Operating system, our implementation is based on Windows OS.