|
Search Results
|
| Post |
Author |
Forum
[desc]
|
Replies |
Views |
Posted |
| |
|
Thread: Generating wordlist using specific charlist with exclusions
Post: RE: Generating wordlist using specific charlist wi...
| Be sure to also do the math to calculate how many password candidates these rules will eliminate compared the speed of your attack. Some of the rules you're describing won't reduce the keyspace very m... |
|
royce |
General Talk
|
8 |
6,770 |
02-17-2018, 07:31 PM |
| |
|
Thread: Generating wordlist using specific charlist with exclusions
Post: RE: Generating wordlist using specific charlist wi...
| I'm not aware of anything dedicated that would natively provide a way to express the rules you described in the original question.
At that point, you're basically looking at using python, perl, etc... |
|
royce |
General Talk
|
8 |
6,770 |
02-22-2018, 09:29 AM |
| |
|
Thread: Distributed Hashcat Cracking
Post: RE: Distributed Hashcat Cracking
| The most viable fork right now (IMO) has been rebranded as "hashtopolis". |
|
royce |
General Talk
|
4 |
3,536 |
03-22-2018, 06:29 PM |
| |
|
Thread: trouble with samdump2
Post: RE: trouble with samdump2
| Posting real hashes is against the forum rules.
The hashes above are special LM and NTLM hashes that indicate an empty/non-set password.
If you're using something called a "Free password hash cr... |
|
royce |
General Talk
|
2 |
2,740 |
05-09-2018, 04:14 PM |
| |
|
Thread: insert a character after each character
Post: RE: insert a character after each character
| Yep, that's pretty much the way to do it. Use hashcat's "--stdout" feature to test to see if it's working like you're expecting. |
|
royce |
General Talk
|
2 |
2,527 |
05-10-2018, 07:13 AM |
| |
|
Thread: 1Password Competition
Post: RE: 1Password Competition
| It's after the official period of the challenge, but since people could theoretically keep working on it ...
If you post the syntax you were using, we might be able to help. The hashcat hash mode i... |
|
royce |
General Talk
|
9 |
7,192 |
05-12-2018, 07:22 PM |
| |
|
Thread: 1Password Competition
Post: RE: 1Password Competition
| Yep. The only way to make real progress on it would be if multiple teams with lots of cards all cooperated. Which would itself be pretty cool, IMO. |
|
royce |
General Talk
|
9 |
7,192 |
05-14-2018, 04:45 PM |
| |
|
Thread: Introduction
Post: RE: Introduction
| Welcome! Interesting thread idea - we'll see if it takes root! |
|
royce |
General Talk
|
2 |
2,623 |
05-17-2018, 05:41 AM |
| |
|
Thread: 1Password Competition
Post: RE: 1Password Competition
| Proof of concept:
Code:
--
# Convert salt and hash from hex to raw and then to base64:
$ echo -n '00bb202b205f064e30f6fae101162a2e' | xxd -p -r | base64
ALsgKyBfBk4w9vrhARYqLg==
$ echo -n '919... |
|
royce |
General Talk
|
9 |
7,192 |
05-13-2018, 09:42 PM |
| |
|
Thread: 500M hashes
Post: RE: 500M hashes
| Yes. If your current platform isn't big enough to hold them all, there's no choice other than to chunk them. Just splitting it in half or thirds might be enough. When splitting it, be sure to use spli... |
|
royce |
General Talk
|
3 |
4,305 |
05-28-2018, 09:34 PM |
| |
|
Thread: 500M hashes
Post: RE: 500M hashes
| GPU memory is probably the first bottleneck that you'll hit when processing a very large hashlist. |
|
royce |
General Talk
|
3 |
4,305 |
06-03-2018, 05:17 PM |
| |
|
Thread: Question about hccapx file
Post: RE: Question about hccapx file
| I *think* you can do something along those lines with hcxtools?
https://github.com/ZerBea/hcxtools |
|
royce |
General Talk
|
6 |
4,364 |
06-04-2018, 03:40 AM |
| |
|
Thread: Newbie - help please
Post: RE: Newbie - help please
| You'll need to open a command prompt on your platform, and navigate to the directory that hashcat lives in, and execute it there.
Once you get oriented there, I would work on growing your understan... |
|
royce |
General Talk
|
1 |
2,464 |
06-16-2018, 10:12 PM |
| |
|
Thread: Save all valid password candidates
Post: RE: Save all valid password candidates
| You can use --stdout to see what candidates hashcat will generate.
Code:
--
$ echo -n hashcat | hashcat --stdout -r ./rules/best64.rule | head
hashcat
tachsah
HASHCAT
Hashcat
hashcat0
hash... |
|
royce |
General Talk
|
6 |
4,518 |
06-17-2018, 05:54 PM |
| |
|
Thread: Save all valid password candidates
Post: RE: Save all valid password candidates
| Verify your syntax using an existing format. If it works for that, it should work for yours. |
|
royce |
General Talk
|
6 |
4,518 |
06-19-2018, 12:44 AM |
| |
|
Thread: Extracting Hashes
Post: RE: Extracting Hashes
| This varies depending on the hash type. But generally, the John the Ripper tools are usually quite good - and up to date for many hash types. |
|
royce |
General Talk
|
1 |
1,864 |
06-19-2018, 08:04 AM |
| |
|
Thread: Help for rule
Post: RE: Help for rule
| I do not understand the question yet. :) Could you provide an example? |
|
royce |
General Talk
|
10 |
6,458 |
07-07-2018, 03:51 PM |
| |
|
Thread: Help for rule
Post: RE: Help for rule
| Or
Code:
--
mp64 -1 ?l?d?u "^?1^?1" >prepend-ldu2.rule
--
The nice thing about philsmd's solution, though, is that it generates the rules in Markov order. |
|
royce |
General Talk
|
10 |
6,458 |
07-07-2018, 09:08 PM |
| |
|
Thread: Help for rule
Post: RE: Help for rule
| In this case, you don't want to use mp64 to generate a wordlist or pipe anything to hashcat. Instead, you want to use it to generate rules.
Code:
--
$ mp64 -1 ?l?d?u "^?1^?1" >prepend-ldu2.rule
... |
|
royce |
General Talk
|
10 |
6,458 |
07-08-2018, 06:59 AM |
| |
|
Thread: Salted vs Unsalted SHA-512
Post: RE: Salted vs Unsalted SHA-512
| If you mean simple salting (and not salting+stretching like sha512crypt), then performance scales directly with the keyspace of the salt.
The attack has to try all possible salts. If the salt spac... |
|
royce |
General Talk
|
2 |
2,402 |
07-04-2018, 06:59 PM |
