search

Hash Cracking

hashtag
Identifying hash formats

hashid <hash>

John

hashid -j <hash>

Hashcat

hashid -m <hash>

hashtag
LM

john --format=lm hash.txt

hashtag
NT

john --format=nt hash.txt

hashtag
NetNTLMv1

john --format=netntlm hash.txt

hashtag
NetNTLMv2

hashtag
Kerberos 5 TGS

hashtag
Kerberos 5 TGS AES128

hashtag
Kerberos 5 TGS AES256

hashtag
Kerberos ASREP

hashtag
MsCache 2

hashtag
MD5

hashtag
Attack modes

Dictionary Attack

Dictionary attackarrow-up-right (-a 0) is, as the name suggests, a dictionary attack. The user provides password hashes and a wordlist as input, and Hashcat tests each word in the list as a potential password until the correct one is found or the list is exhausted.

Dictionary Attack with rules

Mask Attack

Mask attackarrow-up-right (-a 3) is a type of brute-force attack in which the keyspace is explicitly defined by the user. For example, if we know that a password is eight characters long, rather than attempting every possible combination, we might define a mask that tests combinations of six letters followed by two numbers.

Symbol
Charset

?l

abcdefghijklmnopqrstuvwxyz

?u

ABCDEFGHIJKLMNOPQRSTUVWXYZ

?d

0123456789

?h

0123456789abcdef

?H

0123456789ABCDEF

?s

«space»!"#$%&'()*+,-./:;<=>?@[]^_`{

?a

?l?u?d?s

?b

0x00 - 0xff

Let's say that we specifically want to try passwords which start with an uppercase letter, continue with four lowercase letters, a digit, and then a symbol. The resulting hashcat mask would be ?u?l?l?l?l?d?s.

PreviousPassword AttacksNextDatabase Explotation

Last updated