Passwords
Passwords¶
Cracking Passwords¶
Auto hashcat cracker
DEScrypt Cracker using small salts
Password cracking tool for storage devices encrypted with BitLocker
Generate Usernames from format
A web front-end for password cracking and analytics
Regex for hashes
Password Analyser
A Deep Learning Approach for Password Guessing
Generate wordlists
Auto test reused credentials
Wordlists¶
Use top probable 297 million list with Deadhobo rules
Keyboard walking rules
Generating Rainbow tables¶
http://www.cryptohaze.com/wiki/index.php/GRTGen.html
Generating Passwords¶
Generate Wordlist from URL
A dirty little python script to munge dictionary words into possible passwords.
Hashcat¶
Using loopback which when finding password add it to the dictionary and use the rules:
hashcat64.exe -m 0 --loopback -a 0 example0.hash ..\dicts* -r ..\rules\best64.rule --optimized-kernel-enable --show --potfile-path hashcat.potfile --restore ./current_crack.restore
Rules¶
Hobo Rules
NSA Rules
More Custom Rules
Cracking LUKS Encryption¶
https://diverto.github.io/2019/11/18/Cracking-LUKS-passphrases
Identifying LUKS:
blkid -t TYPE=crypto_LUKS -o device
/dev/sdb2
/dev/sdb3
Cracking LUKSv1 Hashcat:
dd if=/dev/sdb3 of=hashcat.luks bs=512 count=4097
hashcat -a 0 -m 14600 hashcat.luks wordlist.txt
Cracking NTLM¶
.\hashcat.exe -m 1000 -w 3 --loopback -a 0 --show --remove --status --potfile-path hashcat.potfile --session full-ntml --optimized-kernel-enable -r ..\rules\NSAKEY.v2.rule -o ..\sort_comb_ntml_passwords.txt ..\sort_comb_ntml_hashes.txt ..\wordlist\breachcompilation.sortuniq.txt
Cracking Bitlocker Encryption¶
https://github.com/Aorimn/dislocker
Known Passwords¶
TeamViewer:
- Encrypted with AES-128-CBC
- Key: 0602000000a400005253413100040000
- IV: 0100010067244F436E6762F25EA8D704