New feature sneakpeak: multirules

[atom]

Hey Guys,

I wanted to give you a sneakpeak to the latest oclHashcat-plus feature coming with version 0.07.

This feature goes back to an suggestion from Hash-IT, see here: http://hashcat.net/forum/thread-645.html

Again, thanks for this!

Since no other cracker have this feature, I had to find a name for it.

I will call it "multirules".

Instead of just giving one -r parameter and a file, you can now add as many -r's as you want.

But they are not just appended (or executed in serial).

They are combined. Each rule of each rule-file is combined with each rule of each rule-file (see original post above to see the details).

Here is what it does:



First, I had created a new directory in the rules/ folder called "hybrid".

Code:

root@sf:~/oclHashcat-plus-0.07# ls -l rules/hybrid/

-rw------- 1 root root 30 Dec 1 15:17 append_d.rule
-rw------- 1 root root 129 Dec 1 15:17 append_ds.rule
-rw------- 1 root root 108 Dec 1 15:17 append_du.rule
-rw------- 1 root root 207 Dec 1 15:17 append_dus.rule
-rw------- 1 root root 48 Dec 1 15:17 append_hl.rule
-rw------- 1 root root 48 Dec 1 15:17 append_hu.rule
-rw------- 1 root root 78 Dec 1 15:17 append_l.rule
-rw------- 1 root root 108 Dec 1 15:17 append_ld.rule
-rw------- 1 root root 207 Dec 1 15:17 append_lds.rule
-rw------- 1 root root 186 Dec 1 15:17 append_ldu.rule
-rw------- 1 root root 285 Dec 1 15:17 append_ldus.rule
-rw------- 1 root root 177 Dec 1 15:17 append_ls.rule
-rw------- 1 root root 156 Dec 1 15:17 append_lu.rule
-rw------- 1 root root 255 Dec 1 15:17 append_lus.rule
-rw------- 1 root root 99 Dec 1 15:17 append_s.rule
-rw------- 1 root root 78 Dec 1 15:17 append_u.rule
-rw------- 1 root root 177 Dec 1 15:17 append_us.rule
-rw------- 1 root root 30 Dec 1 15:17 prepend_d.rule
-rw------- 1 root root 129 Dec 1 15:17 prepend_ds.rule
-rw------- 1 root root 108 Dec 1 15:17 prepend_du.rule
-rw------- 1 root root 207 Dec 1 15:17 prepend_dus.rule
-rw------- 1 root root 48 Dec 1 15:17 prepend_hl.rule
-rw------- 1 root root 48 Dec 1 15:17 prepend_hu.rule
-rw------- 1 root root 78 Dec 1 15:17 prepend_l.rule
-rw------- 1 root root 108 Dec 1 15:17 prepend_ld.rule
-rw------- 1 root root 207 Dec 1 15:17 prepend_lds.rule
-rw------- 1 root root 186 Dec 1 15:17 prepend_ldu.rule
-rw------- 1 root root 285 Dec 1 15:17 prepend_ldus.rule
-rw------- 1 root root 177 Dec 1 15:17 prepend_ls.rule
-rw------- 1 root root 156 Dec 1 15:17 prepend_lu.rule
-rw------- 1 root root 255 Dec 1 15:17 prepend_lus.rule
-rw------- 1 root root 99 Dec 1 15:17 prepend_s.rule
-rw------- 1 root root 78 Dec 1 15:17 prepend_u.rule
-rw------- 1 root root 177 Dec 1 15:17 prepend_us.rule

Their content is always just one function per rule.

Example content from append_d.rule

$0
$1
$2
$3
$4
$5
$6
$7
$8
$9

In combination with the new multirule engine, you can do amazing attacks.

For example:

Code:

root@sf:~/oclHashcat-plus-0.07# ./oclHashcat-plus64.bin 32_hex_7_days.txt rockyou.txt -r rules/hybrid/append_d.rule -r rules/hybrid/append_d.rule

Here are some of the results (notice the double digits at end):

20df8f40e7847aa0d46338d832ec9513:kasbah23
ca81478ea66196ff149f17a5d5bea813:otieno23
b275ee67ea6010c21792c507c1da9414:Spyder51
d9ac24d330faad355a05abde2f68ba14:hantum81
0e2fc35b0771d10af71993527a99ba17:cuzzin06
b912b97f8a16285dd19a8d90b10d2f18:goulds13
...

OK, this is cool, but there is more!

You can mix this with whatever rules you like (best64, toggles, deadone, toxic, passwordpro, own made, etc):

Here is some example output with mixed toggles2.rule

Code:

root@sf:~/oclHashcat-plus-0.07# ./oclHashcat-plus64.bin 32_hex_7_days.txt rockyou.txt -r rules/toggles2.rule -r rules/hybrid/append_d.rule -r rules/hybrid/append_d.rule

8a0ddee8a252fe9022bc423f3e2e705f:Scotia91
e11dae25490acb145b1accab9f5860f4:niXon218
dfb2677e2bd3bdc61d9a86082606c115uiraM31
b724adea43b339fb74e09e9165b10c73:Majolica01
068fd040ec53e63794b082b3583fb947:Chaguito12
21fd93e9f32082cb84b1424afe0028a5:Hyperion16
...

Or the evil stuff:

Code:

root@sf:~/oclHashcat-plus-0.07# ./oclHashcat-plus64.bin 32_hex_7_days.txt rockyou.txt -r rules/hybrid/prepend_ldus.rule -r rules/hybrid/append_ldus.rule

Gives:

a99f161e631f8b4b7924f7edb1bd22ad:.wild11.
e0b61802ec67a7e2a2f059f91546a3fc::vaches:
6baae729b72712e8ae3445134c7a5b0c:umadbro?
0fa365287f1eb88f0b5a0c8365f82040:%foobar@
d87b9dc13d03d8d0ecc08ddbfade9f1dmanu95@
2ff610631dbc3c61797125c013ff53ab:pra1981\
9a002dc5a7a3abae1c44d914e3ee815a:~071095~
d3b4f5c18a826556f2413f8707c638f2:a15051985a
56976ce4606c566a8e6aef13ea8623e9:e23012007o
d5b18ac89e641d90e3a8446b36ecadd3:jgforeverr
...

F3AR

[kartan]

extremly powerful!

as addition it would be nice to have the possibility to include a directory instead of a file. this way you would be able to organize your rules in a directory rules.avaiable/ and link them together to build certain presets e.g. rules.easy/, rules.web_private/, rules.web_leet/, rules.enterprise/...

[undeath]

this is genius! now *-plus can fully replace oclHC and can even do more complex masks (appending AND prepending at the same time!). (without the need to generate custom mask sets all the time and storing gigantic files.) Thank you for this major improvement.

[atom]

... the possibility to include a directory instead of a file.

the idea of having presets is really nice. adding this feature is not a big problem. ACCEPTED.

... now *-plus can fully replace oclHC and can even do more complex masks ...

indeed, it add a new magnitude of flexibility

[Hash-IT]

Thank you for accepting this request atom, I can't wait !!!!!

[mastercracker]

This will be a great feature. If you want to push it a lot, you can also do the equivalent of bruteforce with it.