hashcat
advanced password recovery


Download latest version (older versions)

Name Version md5sum Date
hashcat v0.34 9da7d8a1e0d7203bb355265370812bfd 2010.02.21
hashcat-gui v0.2.433 b61acb9508261a607bf8f00c11b7846e 2010.04.07

Features

  • Free
  • Multi-Threaded
  • Multi-Hash
  • Linux & Windows native binaries
  • Fastest cpu-based multihash cracker
  • SSE2 accelerated
  • All Attack-Modes except Brute-Force and Permutation can be extended by rules
  • Very fast Rule-engine
  • Rules mostly compatible with JTR and PasswordsPro
  • Possible to resume or limit session
  • Automatically recognizes recovered hashes from outfile at startup
  • Can automatically generate random rules
  • Load hashlist with more than 3 million hashes of any type at once
  • Load saltlist from external file and then use them in a Brute-Force Attack variant
  • Able to work in an distributed environment
  • Specify multiple wordlists and also multiple directories of wordlists
  • Number of threads can be configured
  • Threads run on lowest priority
  • 33+ Algorithms implemented with performance in mind
  • ... and much more

Hashcat Gui Screenshot

Designed For Wine
With the help of Wine, hashcat GUI has been tested and runs under Linux - from Setup to executing the Binaries. Compability Layer built in. Designed for Wine.
hashcat GUI screenshot

Attack-Modes

  • Straight *
  • Combination *
  • Toggle-Case *
  • Brute-Force
  • Permutation

* accept Rules

Algorithms

hashcat GUI Hash Browser Search for an Algorithm
with the Hash Browser.

Hashcat ships with a decent number of hashing Algorithms built-in. All Algorithm have been implemented from scratch to run with an exceptional performance. To not loose sight, a unique feature of the GUI is a Hash Browser that lets you easily search for the right hashmode interactively, based on algo-class or application like WordPress, vBulletin or osCommerce.

  • MD5
  • md5($pass.$salt)
  • md5($salt.$pass)
  • md5(md5($pass))
  • md5(md5(md5($pass)))
  • md5(md5($pass).$salt)
  • md5(md5($salt).$pass)
  • md5($salt.md5($pass))
  • md5($salt.$pass.$salt)
  • md5(md5($salt).md5($pass))
  • md5(md5($pass).md5($salt))
  • md5($salt.md5($salt.$pass))
  • md5($salt.md5($pass.$salt))
  • md5($username.0.$pass)
  • md5(strtoupper(md5($pass)))
  • SHA1
  • sha1($pass.$salt)
  • sha1($salt.$pass)
  • sha1(sha1($pass))
  • sha1(sha1(sha1($pass)))
  • sha1(strtolower($username).$pass)
  • MySQL
  • MySQL4.1/MySQL5
  • MD5(Wordpress)
  • MD5(phpBB3)
  • MD5(Unix)
  • SHA-1(Base64)
  • SSHA-1(Base64)
  • SHA-1(Django)
  • MD4
  • NTLM
  • Domain Cached Credentials
  • MD5(Chap)
  • MSSQL

Tested OS

  • Windows XP 32bit
  • Windows XP 64bit
  • Windows Vista 64bit
  • Windows 7 64bit
  • Debian Lenny 32bit
  • Ubuntu 9.02 64bit
  • Ubuntu 9.10 64bit

Speed Comparison

  • Windows 7, 64 bit
  • Core2Quad Q6600 @ 3.2Ghz
  • hashcat v0.34
  • PasswordsPro v3.0.0.0
Name MD5
2 hashes
MD5
500k hashes
Wordpress
1 hash
hashcat (4 threads) 33.13M c/s 30.10M c/s 6450 c/s
hashcat (1 thread) 8.81M c/s 8.13M c/s 1870 c/s
PasswordsPro 7.27M c/s 0.73M c/s 945 c/s
  • Windows XP SP3, 32 bit
  • Intel Core 2 Duo E8400 @ 3.00 Ghz
  • hashcat v0.34
  • PasswordsPro v3.0.0.0
Name MD5
2 hashes
MD5
500k hashes
Wordpress
1 hash
hashcat (2 threads) 18.34M c/s 17.72M c/s 3460 c/s
hashcat (1 thread) 9.74M c/s 9.46M c/s 1750 c/s
PasswordsPro 6.81M c/s 0.76M c/s 894 c/s
  • Ubuntu 9.10, 64 bit
  • AMD Athlon(tm) 64 X2 Dual Core Processor 6000+
  • hashcat v0.34
  • JTR 1.7.5 (64 bit target) + jumbo3 patch
Name MD5
2 hashes
31mb dict
35 rules
MD5
500k hashes
31mb dict
35 rules
Wordpress
1 hash
300kb dict
hashcat (2 threads) 7.43M c/s
0m14.574s
7.21M c/s
0m15.498s
2260 c/s
0m16.959s
hashcat (1 thread) 3.77M c/s
0m28.506s
3.66M c/s
0m29.794s
1130 c/s
0m33.878s
JTR 3.18M c/s
0m33.494s
2.31M c/s
0m46.811s
715 c/s
0m53.495s

Help

A detailed description of all commandline parameters is available by using --help. The hashcat Gui is explained in some of the videos and in the forums. If you encounter a Bug, report it in the Forums where Fixes and Beta versions are announced as well.

Download older versions

This is a list of older hashcat versions, it's not always bad to grab the latest version.

Name Version md5sum Date
hashcat v0.33 46ebe15c91daf842987c2a7e75422073 2010.01.26
hashcat v0.32 4660c422c6620cb1f0f4f21377a788f3 2010.01.15
hashcat v0.31 4e0028ef705c077df05d0fe0d1cb93d9 2010.01.04
hashcat v0.30 ebe8f712e79c5bad1f6da3e8a770a1e3 2009.12.24
hashcat-gui v0.2.429 c72fc10da898d49d4fe208f85f16afca 2010.03.07
hashcat-gui v0.2.428 a11858eeca9a9c01c1d78f5d520a83de 2010.02.03
hashcat-gui v0.2.426 17f5481ef514fc805994a4e64b12f764 2010.01.31
hashcat-gui v0.2.419 47feaf0885c9e0320390031ac830a6a8 2010.01.09
hashcat-gui v0.2.414 c6dbad5adcd01662384337eefa464087 2009.12.26