Password Cracking (hashcat)

Hashcat is a cross-platform CPU and GPU password cracking/recovery tool designed to crack hashed passwords through brute force, dictionary, hybrid, and rule-based attacks.

Hashcat supports a wide range of hashes, which can be found by viewing the help menu. However, I'll provide some flags and common modes that you may use below:

hashcat -m [hash type] [password hashfile] [wordlist] <options>

## OPTIONS
-a [mode]                           Attack Mode
-D [type]                           OpenCL Device Type
-w [profile]                        Workload Profile
-r [file]                           Path To Rule File

--session                           Restore Name For Restoring
--restore                           Restore Session From --session

Hash Types

1000          NTLM
5500          NTLMv1 / NTLMv1 + ESS
5600          NTLMv2

13100         Kerberos (TGS-REP)
18200         Kerberos (AS-REP)
19700         Kerberos AES256

Attack Mode (-a)

0             Straight
1             Combination
3             Brute-Force
6             Hybrid Wordlist + Mask
7             Hybrid Mask + Wordlist

OpenCL Device Type (-D)

1             CPU
2             GPU

Workload Profile (-w)

1             Low
2             Default
3             High
4             Nightmare

PreviousNTLM Hash Types NextDomain Password Audit Tool

Last updated 1 year ago