OK, so at my work place we’ve just got some new laptops and they have a proper GPU for a change (we’ve in the past had intel GPUs). I was lucky enough (or unlucky enough) to be given the job of spec’ing these laptops and my hunt was to include a decent GPU for hash cracking. I strived for an ATI chip but with budget in mind and with the options provided we ended up with an NVidia 660M, SWEET!<\/p>\n
So, not knowing much about NVidia’s I thought I’d have a play and see how these GPUs perform. As I train in MMA I get whacked on the head a lot so had to refresh my memory about hashcat so it made sense to blog about it in case I get hit on the head again next week!<\/p>\n
So the fist thing to do was to find some hashes, step in KoreLogic(@CrackMeIfYouCan)<\/a>! I decided to use these hashes<\/a> as they looked like MD5 and would be easy to work with and there is only 2911 lines (not sure where they came from).<\/p>\n So the firtst thing to do was download the latest version of Hashcat<\/a>, at the time of writing it was 0.09<\/a>. The first thing to try is a basic wordlist attack:<\/p>\n This took a measly 3 seconds to rack and resulted in 157 ofg the 2312 hashes cracked.<\/p>\n Now that I know the cracking is working \ud83d\ude42 I need to remove the cracked hashes from the list and add them to a new file in order to try some fresh attacks\/dictionaries. We will add the -o cracked.txt and –remove flags<\/p>\n Now I will try a rule based attacked with will try 64 alterations based on each line in the wordlist. We will add the flag -r rules\\best64.rule<\/p>\n This results in 97 more cracked passwords. Now we will try a slightly larger rule (best64 only contains 64 iterations of the original line). Trying the passwordspro.rule gets another 64 passwords:<\/p>\n OK, so at my work place we’ve just got some new laptops and they have a proper GPU for a change (we’ve in the past had intel GPUs). I was lucky enough (or unlucky enough) to be given the job of spec’ing these laptops and my hunt was to include a decent GPU for hash […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[1],"tags":[182,187,338,188,337,205,339],"_links":{"self":[{"href":"https:\/\/www.phillips321.co.uk\/wp-json\/wp\/v2\/posts\/894"}],"collection":[{"href":"https:\/\/www.phillips321.co.uk\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.phillips321.co.uk\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.phillips321.co.uk\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.phillips321.co.uk\/wp-json\/wp\/v2\/comments?post=894"}],"version-history":[{"count":5,"href":"https:\/\/www.phillips321.co.uk\/wp-json\/wp\/v2\/posts\/894\/revisions"}],"predecessor-version":[{"id":899,"href":"https:\/\/www.phillips321.co.uk\/wp-json\/wp\/v2\/posts\/894\/revisions\/899"}],"wp:attachment":[{"href":"https:\/\/www.phillips321.co.uk\/wp-json\/wp\/v2\/media?parent=894"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.phillips321.co.uk\/wp-json\/wp\/v2\/categories?post=894"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.phillips321.co.uk\/wp-json\/wp\/v2\/tags?post=894"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}
<\/div><\/td>
2
3
4
5
6
7
8
9
10
11
12
13
14
<\/div><\/td>
\nInput.Mode...: File (..\\..\\Wordlists\\rockyou.txt)
\nHash.Target..: File (C:\\Users\\pentest\\Desktop\\hashes.txt)
\nHash.Type....: MD5
\nTime.Running.: 3 secs
\nTime.Left....: 0 secs
\nTime.Util....: 3229.0ms\/1778.2ms Real\/CPU, 122.6% idle
\nSpeed........: 4442.3k c\/s Real, 62858.6k c\/s GPU
\nRecovered....: 157\/2312 Digests, 0\/1 Salts
\nProgress.....: 14344391\/14344391 (100.00%)
\nRejected.....: 19\/14344391 (0.00%)
\nHWMon.GPU.#1.: 1% Util, 52c Temp, N\/A Fan
\nStarted: Sat Dec 29 20:16:38 2012
\nStopped: Sat Dec 29 20:16:44 2012<\/div><\/td><\/tr><\/tbody><\/table><\/div>\n
2
3
4
5
6
7
8
9
10
11
12
13
14
15
<\/div><\/td>
\nStatus.......: Exhausted
\nInput.Mode...: File (..\\..\\Wordlists\\rockyou.txt)
\nHash.Target..: File (C:\\Users\\pentest\\Desktop\\hashes.txt)
\nHash.Type....: MD5
\nTime.Running.: 3 secs
\nTime.Left....: 0 secs
\nTime.Util....: 3254.1ms\/1727.6ms Real\/CPU, 113.2% idle
\nSpeed........: 4408.1k c\/s Real, 56112.0k c\/s GPU
\nRecovered....: 157\/2312 Digests, 0\/1 Salts
\nProgress.....: 14344391\/14344391 (100.00%)
\nRejected.....: 19\/14344391 (0.00%)
\nHWMon.GPU.#1.: 0% Util, 50c Temp, N\/A Fan
\nStarted: Sat Dec 29 20:23:39 2012
\nStopped: Sat Dec 29 20:23:45 2012<\/div><\/td><\/tr><\/tbody><\/table><\/div>\n
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
<\/div><\/td>
\nStatus.......: Exhausted
\nRules.Type...: File (rules\\best64.rule)
\nInput.Mode...: File (..\\..\\Wordlists\\rockyou.txt)
\nHash.Target..: File (C:\\Users\\pentest\\Desktop\\hashes.txt)
\nHash.Type....: MD5
\nTime.Running.: 8 secs
\nTime.Left....: 0 secs
\nTime.Util....: 8297.0ms\/1878.3ms Real\/CPU, 29.3% idle
\nSpeed........: 134.9M c\/s Real, 185.4M c\/s GPU
\nRecovered....: 97\/2155 Digests, 0\/1 Salts
\nProgress.....: 1118862498\/1118862498 (100.00%)
\nRejected.....: 1482\/1118862498 (0.00%)
\nHWMon.GPU.#1.: 6% Util, 53c Temp, N\/A Fan
\nStarted: Sat Dec 29 20:29:01 2012
\nStopped: Sat Dec 29 20:29:12 2012<\/div><\/td><\/tr><\/tbody><\/table><\/div>\n
2
3
4
5
6
7
8
9
10
11
12
13
<\/div><\/td>
\nRules.Type...: File (rules\\passwordspro.rule)
\nInput.Mode...: File (..\\..\\Wordlists\\rockyou.txt)
\nHash.Target..: File (C:\\Users\\pentest\\Desktop\\hashes.txt)
\nHash.Type....: MD5
\nTime.Running.: 3 mins, 51 secs
\nTime.Left....: 0 secs
\nTime.Util....: 231599.7ms\/2159.8ms Real\/CPU, 0.9% idle
\nSpeed........: 194.5M c\/s Real, 194.3M c\/s GPU
\nRecovered....: 64\/2058 Digests, 0\/1 Salts
\nProgress.....: 45055732131\/45055732131 (100.00%)
\nRejected.....: 59679\/45055732131 (0.00%)
\nHWMon.GPU.#1.: 0% Util, 55c Temp, N\/A Fan<\/div><\/td><\/tr><\/tbody><\/table><\/div>\n","protected":false},"excerpt":{"rendered":"