Quantcast
Channel: hashcat Forum - All Forums
Viewing all 7847 articles
Browse latest View live

Sorting many masks by number of combinations?

April 30, 2020, 5:03 am
$
0
0
Hey guys,
As a part of my work we sometimes have hundreds of thousands of hashes, and at the end of our cracking we use a tool that calculates all of the cracked passwords into Masks (i wouldn't mind an alternative to that as well)

However, the next step is, we have anywhere from 100 to 500 masks, and we are looking for a tool that sorts them from lowest possibility (fastest crack) to highest.

Is anyone using something similar and can recommend?
Search

Speed up bruteforce H/s

April 30, 2020, 7:31 am
$
0
0
Hi,

I'm running bruteforce to get a 8 digit code with a speed of 65000 H/s (taking years). How can I speed it up? If tried to run benchmark and -O but it didn't work. This is my system information:

Architecture:        x86_64
CPU op-mode(s):      32-bit, 64-bit
Byte Order:          Little Endian
CPU(s):              24
On-line CPU(s) list: 0-23
Thread(s) per core:  1
Core(s) per socket:  12
Socket(s):          2
NUMA node(s):        1
Vendor ID:          GenuineIntel
CPU family:          6
Model:              85
Model name:          Intel(R) Xeon(R) Silver 4114 CPU @ 2.20GHz
Stepping:            4
CPU MHz:            2199.996
BogoMIPS:            4399.99
Hypervisor vendor:  KVM
Virtualization type: full
L1d cache:          32K
L1i cache:          32K
L2 cache:            4096K
L3 cache:            16384K
NUMA node0 CPU(s):  0-23


Thanks

Password Hash Identification

April 30, 2020, 10:51 pm
$
0
0
Hi,

I am new to the usage of hashcat, and I am to decrypt a password here it is:
[redacted]

I wanna decrypt it with hashcat and I would appreciate any assistance.

Thanks.

Discord

May 1, 2020, 6:12 am

Hashcat notebook jupyter

May 1, 2020, 7:30 am
$
0
0
Hi,

Did someone try to run Hashcat from Colab (Jupyter Notebook)? I've tried to followed the following steps https://github.com/semihucann/hash_cracking_with_gpu

However, I get this error :

[Errno 2] No such file or directory: '/root/.ssh/'
/content
cat: id_rsa.pub: No such file or directory


The objective is to run hashcat in a free GPU server. I've tried in both Windows and Ubuntu system. 

Thanks

Hashcat keyspace issue

May 2, 2020, 7:33 am
$
0
0
Hey,
When I use the keyspace command, I run into an issue where a 5/6/7 length mask produce the same output as shown here.

[Image: tJwWXWr.png]


On the keyspace FAQ ( https://hashcat.net/wiki/doku.php?id=fre...a_keyspace ) it reads:

In other words, hashcat's --keyspace is specifically designed to optimize distribution of work, and is not a literal representation of the total possible keyspace for a given attack.

I understand it's not a literal representation, but should the values still be different for 5,6 & 7? How can I fix this? I'm trying to write a program that distributes computing workloads and the keyspace value is important to calculate how much each machine needs to do.

Thanks

hashcat and $electrum$5* hash

May 2, 2020, 8:39 am
$
0
0
Hi all!
I have a problem with $electrum$5* hash. I download beta version from https://hashcat.net/beta/ and make hash with electrum2john.py. When I try to find password for hash I cant start - i have error:


Code:
X:\hashcat_beta>hashcat.exe -m 21800 wallet.txt -a 0 pass.txt -o cracked.txt -w 3 --status
hashcat (v5.1.0-1774-gf96594ef) starting...

OpenCL API (OpenCL 2.1 AMD-APP (3004.5)) - Platform #1 [Advanced Micro Devices, Inc.]
=====================================================================================
* Device #1: Baffin, 4032/4096 MB (3264 MB allocatable), 16MCU

Minimum password length supported by kernel: 0
Maximum password length supported by kernel: 256

Hashes: 1 digests; 1 unique digests, 1 unique salts
Bitmaps: 16 bits, 65536 entries, 0x0000ffff mask, 262144 bytes, 5/13 rotates
Rules: 1

Applicable optimizers:
* Zero-Byte
* Single-Hash
* Single-Salt
* Slow-Hash-SIMD-LOOP
* Uses-64-Bit

Watchdog: Temperature abort trigger set to 90c

* Device #1: Skipping hash-mode 21800 - known CUDA/OpenCL Runtime/Driver issue (not a hashcat issue)
            You can use --force to override, but do not report related errors.


If i try to use --force hashcat is crash.
I use AMD Radeon 560 with latest drivers and Windows 7 system. Anybody knows how to resolve this problem?
Thanks.

Brute-Shark: A New Project that can brute force hashes from PCAP file

May 2, 2020, 3:45 pm
$
0
0
BruteShark is a Network Forensic Analysis Tool (NFAT) that performs deep processing and inspection of network traffic (mainly PCAP files). It includes: password extracting, building a network map, reconstruct TCP sessions, extract hashes of encrypted passwords and even convert them to a Hashcat format in order to perform an offline Brute Force attack.

Please check it out!
https://github.com/odedshimon/BruteShark
Search

Doing research to build a rig, would like opinions

May 2, 2020, 4:36 pm
$
0
0
So, this is the specs I was thinking about doing it.

frame: Veddha V3C 6-GPU Mining Case 36.99
mobo:  ASUS WS Z390 PRO LGA 1151 (300 series) 387.99
gpu:  GTX 1080 TI 1x (for now) - used so prices vary
ram:  G.SKILL TridentZ RGB Series 32GB (2 x 16GB) DDR4 3200 - 159.99
cpu:  Intel Core i5-9600K LGA 1151 (300 series) - 199.79
ssd:  Kingston A400 2.5" 240GB (OS ssd) - 39.99
psu:  CORSAIR HX Series HX1200 80 plus platinum - 249.99
total: ~1074 without GPU

possible additional SSD to store wordlist, would it be quicker to cache if they were on separate SSD from each other, or just buy a 1TB separate SSD and just throw wordlists on there?

I have been looking at how people build their mining rig and base off of that, thats the reason for the frame/case I chose, possible additional GPU if I want to.

I noticed majority of the mining rig are using.. low specs.. celeron cpu with 4gb of ram, I didn't like that, and went with 32gb (possibly go up to 64gb if its worth it) and i5 cpu, or is it overkill?

My plan is to buy used 1080ti and have a max of 4 GPU, maybe 6 GPU over time, not all at once, what I also didn't like is those risers they used, using usb 3.0, it just seems like another performance loss, maybe im wrong but would it be better to be ribbon extension cables for pcie x16 3.0, like this one here?

https://www.amazon.com/Thermaltake-Gamin...050&sr=8-4

But what I am worried about is electricity, This won't be running 24/7 idle, only when its "working" and turned off after that, I don't want my roommate having a heart attack why the electric bill is hundreds more than usual, or am I overreacting on that, I guess I wouldn't know unless I have one of those plugs that gives me average of how much electrcity I am using.

Would a 1200 psu be fine to run four 1080 TI, or what psu setup would I want if I end up going to 6 gpu, but of course if I do that and want to keep a beefy cpu it seems my only option is i7 on lga 2011 socket, along with ram

Dusted off old gaming laptop

April 27, 2020, 1:01 pm
$
0
0
Hello all.

I just found my old MSI gaming laptop (GX660R) and installed the latest version of The-Distribution-Which-Does-Not-Handle-OpenCL-Well (Kali) 2.0 onto it, and hoped I can put it to some good use again.

I remember the good old days when I ran BT on it and used to crack hashes with my Ati Mobility Radeon HD 5870. Trust me, it's a dinosaur these days but still good compared to run CPU cracking tools.

Now to my problem, it seems that the card is no longer supported obviously, and I have had a hard time finding anything, drivers vice, that works.

Here is some dumps from the system:

$ hashcat -b
hashcat (v5.1.0) starting in benchmark mode...

Benchmarking uses hand-optimized kernel code by default.
You can use it in your cracking session by setting the -O option.
Note: Using optimized kernel code limits the maximum supported password length.
To disable the optimized kernel code in benchmark mode, use the -w option.

* Device #1: Not a native Intel OpenCL runtime. Expect massive speed loss.
            You can use --force to override, but do not report related errors.
No devices found/left.


Started: Mon Apr 27 21:48:47 2020
Stopped: Mon Apr 27 21:48:47 2020



$ sudo lshw -c video
  *-display               
      description: VGA compatible controller
      product: Broadway XT [Mobility Radeon HD 5870]
      vendor: Advanced Micro Devices, Inc. [AMD/ATI]
      physical id: 0
      bus info: pci@0000:01:00.0
      version: 00
      width: 64 bits
      clock: 33MHz
      capabilities: pm pciexpress msi vga_controller bus_master cap_list rom
      configuration: driver=radeon latency=0
      resources: irq:46 memory:d0000000-dfffffff memory:e0020000-e003ffff ioport:d000(size=256) memory:c0000-dffff9




$ clinfo | grep -i vendor
  Platform Vendor                                The pocl project
  Device Vendor                                    GenuineIntel
  Device Vendor ID                                0x6c636f70
  ICD loader Vendor                              OCL Icd free software



So if it isn't obvious already. I want this old kitty to rev those fans back to maximum speed for hours again. My problem is that I lack advanced experience solving these kinds of issues without taking down the whole OS a couple of times, reinstalling, etc, and to be completely honest also lack proper knowledge.

So I know it has been running before, and I would like it to be able to run again. Is there anyone on this forum willing to help me resurrect this laptop to its former glory? Help me sort this problems out?

I would appreciate it greatly! Thanks!

PBKDF2-HMAC-SHA256

May 3, 2020, 2:31 am
$
0
0
I read a nice post about this format: Storing Password in an easy and secure way using Perl

Author wrote, the generated hash:
"The hash will look like this string: {X-PBKDF2}HMACSHA1:AAAD6A:SEvDOw==:1rmVDmR6OgwPEYV5CiwUeYnd+OE="

Can you explain, what the 2nd field (AAAD6A) is for?
Can iteration be determined from this format?

Thank you.

Revised build advice.

May 3, 2020, 7:18 am
$
0
0
I originally made a thread, then deleted it, and revised my build, and would like input please.

Here is the specs:
frame: veddha 6 gpu mining open frame - 36.99
cpu:    AMD threadripper 1900x cooler - noctua nh-u12s 266.95
mobo: asrock x399 gaming 6 - 239.99
ram:  G.skill ripjaws V 32gb (will be upgraded as I get more GPU) - 138.99
ssd: sandisk 240gb - 44.99
GPU: used GTX 1080 TI from ebay or where ever. - varies
PSU: EVGA supernova 1600w 80+ platinum - 419.99

os: ubuntu/debian or something of the sort for CLI.

With the frame I am using I am guessing it won't matter about getting Founders edition considering the frame I am buying is open frame, and has 5x 120mm fans going across the front of GPU, right?

I came across a post someone saying even if I have 64 lanes, and other resources use the lanes, best I can get is having two cards be 16x and two cards being 8x, is that depending on the build or no matter what, thats best you're going to get?

From my understanding if I run 4x GTX 1080 TI 11gb I will need at least 44gb of ram for that alone(1gb ram per 1gb nvram), and then I also need to consider ram space for wordlist, I was thinking of topping it at 64gb when I get my third card, and 64gb should be enough for all four, or should I consider going beyond 64gb?

could I be wrong to assume that gpu risers that use those 3.0 usb, will hinder performance?
I was thinking of going with these instead, or will it not matter?
https://www.amazon.com/Thermaltake-Gamin...447&sr=8-2

Sorry for all the questions!

Optimize mask bruteforce PMKID

May 3, 2020, 10:42 am
$
0
0
Hi,

How can I optimize a custom mask from a .m16800 file? I'm using this one --custom-charset1=abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789 ?1?1?1?1?1?1?1?1 but takes years.

Thanks

Use whole RAM Colab

May 3, 2020, 10:49 am
$
0
0
I'm just using 1.49 out of 25 GB of memory from Colab while running a script? How can I use the maximum memory capacity to speed up the process? (-m 16800 -a 3 -w 4)
Thanks

Help implementing FNV1 for a3 mode

May 4, 2020, 3:07 am
$
0
0
Hello everyone,

I have successfully implemented a very simple Hashcat module for FNV1 but only for the a0 mode. Because FNV1 is working with bytes (u8) and not u32 I'm having trouble developing the a3 mode.

I have seen the new Hashcat development guide published recently. I think the example of a simple implementation with comments (I've put a bunch of them) could be a nice addition to the guide.

Is anyone interested in working on FNV1 for the a3 mode ? Or does anyone have another idea for a simple hash that I could implement, document and possibly publish as a guide ?

I will post a similar message on the Freenode IRC as well.

Cheers,

Tachsah
Search

Error UnicodeDecodeError hccapx

May 4, 2020, 5:41 am
$
0
0
Hi,

I've run benchmark and I got the following:

Hashmode: 0 - MD5

Speed.#1.........:  3990.5 MH/s (54.19ms) @ Accel:16 Loops:1024 Thr:1024 Vec:2

Hashmode: 100 - SHA1

Speed.#1.........:  1702.3 MH/s (63.47ms) @ Accel:8 Loops:1024 Thr:1024 Vec:1

Hashmode: 1400 - SHA2-256

Speed.#1.........:  749.5 MH/s (72.18ms) @ Accel:4 Loops:1024 Thr:1024 Vec:1

Hashmode: 1700 - SHA2-512

Speed.#1.........:  238.6 MH/s (56.67ms) @ Accel:16 Loops:64 Thr:1024 Vec:1

Hashmode: 22000 - WPA-PBKDF2-PMKID+EAPOL (Iterations: 4095)

Speed.#1.........:    82562 H/s (80.25ms) @ Accel:16 Loops:128 Thr:1024 Vec:1

Hashmode: 1000 - NTLM

Speed.#1.........:  7043.9 MH/s (61.45ms) @ Accel:64 Loops:512 Thr:1024 Vec:4

Hashmode: 3000 - LM

Speed.#1.........:  3696.1 MH/s (58.31ms) @ Accel:256 Loops:1024 Thr:64 Vec:1

Hashmode: 5500 - NetNTLMv1 / NetNTLMv1+ESS

Speed.#1.........:  4584.6 MH/s (94.64ms) @ Accel:64 Loops:512 Thr:1024 Vec:4

Hashmode: 5600 - NetNTLMv2

Speed.#1.........:  304.8 MH/s (88.72ms) @ Accel:16 Loops:128 Thr:1024 Vec:2

Hashmode: 1500 - descrypt, DES (Unix), Traditional DES

Speed.#1.........:  154.8 MH/s (87.31ms) @ Accel:16 Loops:1024 Thr:64 Vec:1

Hashmode: 500 - md5crypt, MD5 (Unix), Cisco-IOS $1$ (MD5) (Iterations: 1000)

Speed.#1.........:  2293.3 kH/s (90.80ms) @ Accel:16 Loops:1000 Thr:1024 Vec:1

Hashmode: 3200 - bcrypt $2*$, Blowfish (Unix) (Iterations: 32)

Speed.#1.........:    2468 H/s (30.47ms) @ Accel:2 Loops:8 Thr:12 Vec:1

Hashmode: 1800 - sha512crypt $6$, SHA512 (Unix) (Iterations: 5000)

Speed.#1.........:    34344 H/s (76.72ms) @ Accel:4 Loops:256 Thr:1024 Vec:1

Hashmode: 7500 - Kerberos 5, etype 23, AS-REQ Pre-Auth

Speed.#1.........: 47418.1 kH/s (71.42ms) @ Accel:128 Loops:32 Thr:64 Vec:1

Hashmode: 13100 - Kerberos 5, etype 23, TGS-REP

Speed.#1.........: 47150.9 kH/s (71.79ms) @ Accel:128 Loops:32 Thr:64 Vec:1

Hashmode: 15300 - DPAPI masterkey file v1 (Iterations: 23999)

Speed.#1.........:    14013 H/s (80.41ms) @ Accel:32 Loops:64 Thr:1024 Vec:1

Hashmode: 15900 - DPAPI masterkey file v2 (Iterations: 12899)

Speed.#1.........:    7577 H/s (68.57ms) @ Accel:2 Loops:256 Thr:1024 Vec:1

Hashmode: 7100 - macOS v10.8+ (PBKDF2-SHA512) (Iterations: 1023)

Speed.#1.........:    95244 H/s (55.26ms) @ Accel:2 Loops:255 Thr:1024 Vec:1

Hashmode: 11600 - 7-Zip (Iterations: 16384)

Speed.#1.........:    84321 H/s (77.08ms) @ Accel:2 Loops:4096 Thr:1024 Vec:1

Hashmode: 12500 - RAR3-hp (Iterations: 262144)

Speed.#1.........:    10419 H/s (79.56ms) @ Accel:1 Loops:16384 Thr:1024 Vec:1

Hashmode: 13000 - RAR5 (Iterations: 32799)

Speed.#1.........:    9133 H/s (90.68ms) @ Accel:8 Loops:256 Thr:1024 Vec:1

Hashmode: 6211 - TrueCrypt RIPEMD160 + XTS 512 bit (Iterations: 1999)

Speed.#1.........:    61466 H/s (52.70ms) @ Accel:16 Loops:32 Thr:1024 Vec:1

Hashmode: 13400 - KeePass 1 (AES/Twofish) and KeePass 2 (AES) (Iterations: 24569)

Speed.#1.........:    10462 H/s (211.63ms) @ Accel:32 Loops:128 Thr:1024 Vec:1

Hashmode: 6800 - LastPass + LastPass sniffed (Iterations: 499)

Speed.#1.........:  586.2 kH/s (87.68ms) @ Accel:4 Loops:499 Thr:1024 Vec:1

Hashmode: 11300 - Bitcoin/Litecoin wallet.dat (Iterations: 200459)

Speed.#1.........:    1138 H/s (59.49ms) @ Accel:1 Loops:1024 Thr:1024 Vec:1



When I use the hash mode: 1000, 0, etc. to both .cap and .hccapx file (https://drive.google.com/open?id=1Z0OI1W...3Woka8bp2p), I get the this error:


Code:
UnicodeDecodeError                        Traceback (most recent call last)

<ipython-input-64-45059f738655> in <module>()
----> 1 get_ipython().system('hashcat -m 1500 -a 3 -w 3 --status MIWIFI_2G.hccapx --custom-charset1=abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789 ?1?1?1?1?1?1?1?1')


5 frames

/usr/lib/python3.6/codecs.py in decode(self, input, final)
    319        # decode input (taking the buffer into account)
    320        data = self.buffer + input
--> 321        (result, consumed) = self._buffer_decode(data, self.errors, final)
    322        # keep undecoded input until the next call
    323        self.buffer = data[consumed:]


UnicodeDecodeError: 'utf-8' codec can't decode byte 0x84 in position 619: invalid start byte


I've used the following command:

!hashcat -m 1500 -a 3 -w 3 --status MIWIFI_2G.hccapx --custom-charset1=abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789 ?1?1?1?1?1?1?1?1

Hashcat version: v5.1.0-1789-gc7da6357

Why I'm getting those errors? Are the handshake files correct? Should I use a different hashcat version?

Thanks

hashmode sha1(sha1($pass).$salt) support?

May 4, 2020, 9:23 am
$
0
0
I recently needed support for what could be called hashmode 4510 - sha1(sha1($pass).$salt) but this seems to be missing. Is this algorithm really missing or is it supported in some other way that i have missed?
Could not find any information from GitHub about this specific issue either.

Cannot find an OpenCL ICD loader library

April 30, 2020, 3:29 am
$
0
0
OS X El Capitan

CPU: 2.5 GHz Intel Core i5
GPU: Intel HD Graphics 4000 1536 MB



I'm using Hashcat on Linux



Processor: Intel Core i5-3210M CPU @ 2.50GHz x2
Graphics: Intel Ivybridge Mobile


Cannot find an OpenCL ICD loader library

Do the version 5.1 support iterations or custom combination of current hashes?

May 5, 2020, 12:15 am
$
0
0
Now ,I want to crack one hash computed by serveral iterations of HMAC-SHA512.

For example, 
In the first round, hmac-sha512(salt,password) produces h1.
And in the later rounds, the salt is constant and the password is the result of previous round.

I notice the john the ripper support the feature. However, In the implement of HMAC-SHA512 of the jtr, the password is key. and in the hash I want to crack  the salt is key. It also can't work.

So I want to know if the hashcat 5.1 support this feature.
if not, will hashcat support it in the future?
can changing the kernel files solve it?(I saw this method in other post)

HascatGUI + RIGS

May 5, 2020, 1:34 am
$
0
0
Is it possible to use hashcat GUI to make a task for 5+ PC in LAN ?
Viewing all 7847 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>