Hi -
I have some questions regarding cracking in general:
1. Does it make more sense to use several smaller dictionary files, or one or two large ones? Why? For example, using a single, gigantic dictionary list means that you would probably spend a lot of time in each letter. Is a linear approach (going from start to finish) statistically better or worse than it being randomized?
2. In other words, do dictionary lists go from start to finish, in the same order, each and every time, or can the words that are read from the dictionary file be randomized? What makes the most sense?
3. The way I understand WPA cracking is that one starts with Reaver. If unsuccessful, one should try a dictionary attack. And as a matter of last resort, a brute force attack. Is this correct?
4. Regarding dictionary attacks, there seem to be so many options available. Hashcat, Pyrit, coWPAtty, rainbow tables, dictionary files, etc..
I have spent several hours trying to figure out what is (currently) the best option, and it's still not clear to me. In terms of a dictionary attack, Hascat using regular dictionary files seems to be my best bet. Seeing as how Hashcat is GPU-accelerated and I have a GTX-690 (only one), this option seems to make sense for me. Am I wrong?
5. Which version of Hashcat should I get?
6. Finally; my understanding of the process of Hashcat is to obtain a handshake by de-authenticating a client (I can inject), taking that file and converting it here using the online tool (why is that hosted online and not a part of Hashcat itself? - just curious), and finally, to run Hashcat with my selected Dictionary files.
I thank anyone who takes the time to read and respond to this, I know it's a lot. Also, I apologize for my (likely) poorly-worded questions. I know so little that I probably don't know how to say what I'm trying to ask. There is still a lot of ambiguity surrounding these topics for me, and I'm trying to educate myself. If anyone can provide some answers, it would be greatly appreciated.
I have some questions regarding cracking in general:
1. Does it make more sense to use several smaller dictionary files, or one or two large ones? Why? For example, using a single, gigantic dictionary list means that you would probably spend a lot of time in each letter. Is a linear approach (going from start to finish) statistically better or worse than it being randomized?
2. In other words, do dictionary lists go from start to finish, in the same order, each and every time, or can the words that are read from the dictionary file be randomized? What makes the most sense?
3. The way I understand WPA cracking is that one starts with Reaver. If unsuccessful, one should try a dictionary attack. And as a matter of last resort, a brute force attack. Is this correct?
4. Regarding dictionary attacks, there seem to be so many options available. Hashcat, Pyrit, coWPAtty, rainbow tables, dictionary files, etc..
I have spent several hours trying to figure out what is (currently) the best option, and it's still not clear to me. In terms of a dictionary attack, Hascat using regular dictionary files seems to be my best bet. Seeing as how Hashcat is GPU-accelerated and I have a GTX-690 (only one), this option seems to make sense for me. Am I wrong?
5. Which version of Hashcat should I get?
6. Finally; my understanding of the process of Hashcat is to obtain a handshake by de-authenticating a client (I can inject), taking that file and converting it here using the online tool (why is that hosted online and not a part of Hashcat itself? - just curious), and finally, to run Hashcat with my selected Dictionary files.
I thank anyone who takes the time to read and respond to this, I know it's a lot. Also, I apologize for my (likely) poorly-worded questions. I know so little that I probably don't know how to say what I'm trying to ask. There is still a lot of ambiguity surrounding these topics for me, and I'm trying to educate myself. If anyone can provide some answers, it would be greatly appreciated.