Please note, this is a STATIC archive of website hashcat.net from October 2020, cach3.com does not collect or store any user information, there is no "phishing" involved.

hashcat Forum

Full Version: What is the default bruteforce charset?
You're currently viewing a stripped down version of our content. View the full version with proper formatting.
Hello!
i can't seem to find the answer to this anywhere...
when i do the simple command:
oclHashcat64.exe -m 300 -a 3 E:\Hash\hash.txt

in the hopes of bruteforcing a password, is it only the "basic" 62 charset? (numbers, small-case letters, upper-case letters)? or symbols as well?

and if i want to include all symbols, what exactly should i be adding to my command?

Alternatively, if "all symbols" is too much, what i usually recommended/used?
thank you!
Default values are found here: https://hashcat.net/wiki/doku.php?id=oclh...ult_values

So for -a 3:

Quote:-1 ?l?d?u -2 ?l?d -3 ?l?d*!$@_ ?1?2?2?2?2?2?2?3?3?3?3?d?d?d?d

For "all symbols" you'd use the ?a character class with an appropriate mask, e.g. ?a?a?a?a?a?a?a?a for 95^8. See https://hashcat.net/wiki/doku.php?id=mask_attack#masks
(05-16-2015, 05:19 AM)epixoip Wrote: [ -> ]Default values are found here: https://hashcat.net/wiki/doku.php?id=oclh...ult_values

So for -a 3:

Quote:-1 ?l?d?u -2 ?l?d -3 ?l?d*!$@_ ?1?2?2?2?2?2?2?3?3?3?3?d?d?d?d

For "all symbols" you'd use the ?a character class with an appropriate mask, e.g. ?a?a?a?a?a?a?a?a for 95^8. See https://hashcat.net/wiki/doku.php?id=mask_attack#masks

ohh now i get it! "?a" includes all the above char-sets within itself.

so in order to brute-force every password combination between 0 characters and lets say 9 i need to write:
Code:
oclHashcat64.exe ?a -m 300 -a 3 E:\Hash\hash.txt
No, that mask would only brute force passwords with a length of 1. Actually it wouldn't do anything because your arguments are in the wrong order. If you wanted to brute force "all" characters lengths 1-9, your command would be:

Code:
oclHashcat64 -a 3 -i -m 300 E:\Hash\hash.txt ?a?a?a?a?a?a?a?a?a
(05-16-2015, 08:41 PM)epixoip Wrote: [ -> ]No, that mask would only brute force passwords with a length of 1. Actually it wouldn't do anything because your arguments are in the wrong order. If you wanted to brute force "all" characters lengths 1-9, your command would be:

Code:
oclHashcat64 -a 3 -i -m 300 E:\Hash\hash.txt ?a?a?a?a?a?a?a?a?a

OH, now i get it.
thank you so much for all the help!