|
Search Results
|
| Post |
Author |
Forum
[desc]
|
Replies |
Views |
Posted |
| |
|
Thread: 7Zip hash woes
Post: RE: 7Zip hash woes
| you need to use -m 11600 for 7-zip
If you see the message "No hashes loaded" it is not the actual message we are interested in here.
The error message that is responsible for letting you know what... |
|
philsmd |
hashcat
|
15 |
12,598 |
11-13-2017, 09:29 PM |
| |
|
Thread: 7Zip hash woes
Post: RE: 7Zip hash woes
| somehow you managed to again not post the actual error message.
The error message should be shown/explained after the hash within the line:
Hashfile '../john.hash' on line 1 (hash): ERROR_MESSAGE
... |
|
philsmd |
hashcat
|
15 |
12,598 |
11-13-2017, 10:34 PM |
| |
|
Thread: 7Zip hash woes
Post: RE: 7Zip hash woes
| are you sure that you are using the latest version of 7z2hashcat from https://github.com/philsmd/7z2hashcat/ ? |
|
philsmd |
hashcat
|
15 |
12,598 |
11-13-2017, 11:36 PM |
| |
|
Thread: 7Zip hash woes
Post: RE: 7Zip hash woes
| I think to understand this problem we might first need to get rid of that long hash within the error message.
A patch like this might help for the time being:
Code:
--
diff --git a/src/hashes.c b... |
|
philsmd |
hashcat
|
15 |
12,598 |
11-14-2017, 12:19 AM |
| |
|
Thread: 7Zip hash woes
Post: RE: 7Zip hash woes
| damn. salt-value exception could happen in several situations. It seems there is either something wrong with your hash or the hashcat parser for some strange reason (mistakenly?) rejects it.
If you... |
|
philsmd |
hashcat
|
15 |
12,598 |
11-14-2017, 10:40 AM |
| |
|
Thread: RC4 attack for 40bit Word 97-2003
Post: RE: RC4 attack for 40bit Word 97-2003
| My guess is that there might be a lot of tools around or you just slightly modify a popular tool like libreoffice. We only need to replace the actual key that was generated from a "fake" password with... |
|
philsmd |
hashcat
|
6 |
6,545 |
11-16-2017, 12:23 PM |
| |
|
Thread: How to say that the password starts with "abc"
Post: RE: How to say that the password starts with "abc"
| What type of hashes do you use (there are salted hashes, where you can use abc as salt)?
What type of attack mode are you planning to use? for word list/dictionary attack you can just add a rule that... |
|
philsmd |
hashcat
|
3 |
4,527 |
11-16-2017, 12:35 PM |
| |
|
Thread: correct command line
Post: RE: correct command line
| You do not need to repeately hit the r key. it makes absolutely no sense.
You only need to hit r (for resume) when you hit p (for pause) beforehand.
This means that resuming (r) only makes sense if ... |
|
philsmd |
hashcat
|
24 |
22,564 |
11-16-2017, 09:28 PM |
| |
|
Thread: Very Specific Cracking Method
Post: RE: Very Specific Cracking Method
| one approach could be to create multiple rules (see https://hashcat.net/wiki/?id=rule_based_attack) each one of those rules prepends one single/different character (and does the other manipilation to ... |
|
philsmd |
hashcat
|
3 |
4,054 |
11-16-2017, 10:09 AM |
| |
|
Thread: RC4 attack for 40bit Word 97-2003
Post: RE: RC4 attack for 40bit Word 97-2003
| ?b means that hashcat should try all possible values a byte can have, i.e.
from 0x00 to 0xff, this means that each byte has 256 possibilities
256^5 = 256*256*256*256*256 = 1099511627776 combinations
... |
|
philsmd |
hashcat
|
6 |
6,545 |
11-16-2017, 12:05 PM |
| |
|
Thread: Problems with the encodings of dictionaries ...
Post: RE: Problems with the encodings of dictionaries .....
| russian passwords could also be encoded with CP1251 or KOI8-R etc.
Pro tip: there are some charsets shipped with hashcat (see for instance the charsets/standard/Russian folder under your extracted ha... |
|
philsmd |
hashcat
|
5 |
4,523 |
11-16-2017, 09:34 PM |
| |
|
Thread: Stdin and stdout simultaneously
Post: RE: Stdin and stdout simultaneously
| Yes this already works.
You must be doing something wrong, because this is working perfectly fine here.
You can troubleshoot it with just an echo command, e.g:
echo test | ./hashcat64.bin --st... |
|
philsmd |
hashcat
|
3 |
4,064 |
11-17-2017, 09:01 AM |
| |
|
Thread: Very Specific Cracking Method
Post: RE: Very Specific Cracking Method
| I think that would quickly result in way too many combinations/password candidates.
It of course depends on how small your wordlist is.
If the wordlist is very small you could for instance just genera... |
|
philsmd |
hashcat
|
3 |
4,054 |
11-17-2017, 01:52 PM |
| |
|
Thread: Do not try to write --keyspace yourself
Post: RE: Do not try to write --keyspace yourself
| The output of --keyspace can be used to distribute cracking, i.e. you can use the value from --keyspace and divide it into x chunks (best would be if the chunk size depends on the performance of your ... |
|
philsmd |
hashcat
|
15 |
20,288 |
11-24-2017, 09:40 AM |
| |
|
Thread: 4.01 ERROR "Restore value is greater than keyspace" after pause/checkpoint
Post: RE: 4.01 ERROR "Restore value is greater than keys...
| oh. you tried to run the downloaded github project page as a perl file.
This is not how it works.
You need to download the perl script (text file) from https://raw.githubusercontent.com/philsmd/an... |
|
philsmd |
hashcat
|
7 |
5,866 |
11-28-2017, 04:16 PM |
| |
|
Thread: http authentication
Post: RE: http authentication
| The format is as explained here: https://github.com/hashcat/hashcat/issues/1021 just this one:
$sip$*[URI_SERVER]*[URI_CLIENT]*[USERNAME]*[REALM]*[METHOD]*[URI_PREFIX]*[URI_RESOURCE]*[URI_SUFFIX]*[NON... |
|
philsmd |
hashcat
|
1 |
2,164 |
11-28-2017, 05:16 PM |
| |
|
Thread: old TrueCrypt volumes
Post: RE: old TrueCrypt volumes
| First of all to answer you question, you normally would use a mask attack like this:
Code:
--
hashcat64.exe -m 6222 -a 3 --increment --increment-min 9 J:\tc\mooi2009.tc -2 "XxZzJjTtUuQq?d;:,.!@#$%... |
|
philsmd |
hashcat
|
1 |
2,457 |
11-18-2017, 05:29 PM |
| |
|
Thread: Max Pass Length using Wordlists
Post: RE: Max Pass Length using Wordlists
| You could also just use reject rules from: https://hashcat.net/wiki/doku.php?id=rule_based_attack#rules_used_to_reject_plains
e.g.
Code:
--
hashcat -m 0 -a 0 -w 3 -j " |
|
philsmd |
hashcat
|
7 |
5,994 |
12-01-2017, 02:56 PM |
| |
|
Thread: merge dictionary or not?
Post: RE: merge dictionary or not?
| It makes sense if there are a lot of duplicates.
On linux you would just sort and unique the words with "sort -u"
Code:
--
sort -u wordlist_folder/* -o sort_and_uniqued.txt
--
|
|
philsmd |
hashcat
|
2 |
2,687 |
12-03-2017, 10:27 AM |
| |
|
Thread: Another newbie question
Post: RE: Another newbie question
| It's always a good idea to create a new and similar volume (same settings/steps) and use this with a password (could also be similar to the one that you think was used) for testing hashcat.
The first... |
|
philsmd |
hashcat
|
3 |
3,665 |
11-24-2017, 03:30 PM |
