hashcat Forum

hashcat Forum > Support > hashcat > Exfiltration of target material
Full Version: Exfiltration of target material
You're currently viewing a stripped down version of our content. View the full version with proper formatting.

john_alan

10-17-2019, 06:58 PM
Is there documentation on how to appropriately exfiltrate target hash/material for the various supported types?

I.e. how to prep MS docs to obtain hash data or Apple notes, or various FDE schemes? Thanks 😊

philsmd

10-17-2019, 08:49 PM
office2john.py
7z2hashcat.py
blockchain2john.py
bitcoin2john.py
1password2john.py
itunes_backup2hashcat.pl
etc

it depends on your hash type
they can be found on the internet very easily (just search for what you are looking for, example hashes are here https://hashcat.net/wiki/example_hashes)

john_alan

10-17-2019, 09:42 PM
(10-17-2019, 08:49 PM)philsmd Wrote: [ -> ]office2john.py
7z2hashcat.py
blockchain2john.py
bitcoin2john.py
1password2john.py
itunes_backup2hashcat.pl
etc

it depends on your hash type
they can be found on the internet very easily (just search for what you are looking for, example hashes are here https://hashcat.net/wiki/example_hashes)

Thanks Phil, I am experienced with JTR. 

But aren’t these JTR scripts? Isn’t there an equivalent for Hashcat? Is JTR what folks use?

philsmd

10-17-2019, 10:12 PM
wherever possible it makes sense to not invent a new hash format. so it makes sense to use the same signature and data parts/salts etc in the hashcat format like in the jtr format. it doesn't make sense to reinvent the wheel here
hashcat Forum > Support > hashcat > Exfiltration of target material