+- hashcat Forum (https://hashcat.net/forum)
+-- Forum: Support (https://hashcat.net/forum/forum-3.html)
+--- Forum: hashcat (https://hashcat.net/forum/forum-45.html)
+--- Thread: Problem get password that is in dictionary (/thread-6344.html)
Pages:
1
2
Problem get password that is in dictionary - Honik89 - 02-28-2017
Hello everybody.
I' m testing on OS X Sierra with Hashcat v3.30-377-ga509221.
I've created a personal dictionary of 8 lines with my password. Then i've converted my password to bcrypto hash online and I've created a file with it.
In my terminal I've typed:
hashcat -m 3200 hash diczi -o risu.txt
and also tried:
hashcat -a 0 -m 3200 hash diczi-o risu.txt
The result is:
Status...........: Exhausted
and no password was found.
I also tried with SHA1 without problem.
What am I doing wrong?
Thank you
RE: Problem get password that is in dictionary - royce - 02-28-2017
Try testing with the example hashcat hash:
https://hashcat.net/wiki/doku.php?id=example_hashes
This is "hashcat": $2a$05$LhayLxezLhK1LhWvKxCyLOj0j1u.Kj0jZ0pEmm134uzrQlFvQJLF6
If this works, it's more likely to be the tool that was used to create the hash.
RE: Problem get password that is in dictionary - Tuxel - 02-28-2017
Hi
Check the hash with an online hash identifier
https://www.onlinehashcrack.com/hash-identification.php
Then you see if the hash is OK
RE: Problem get password that is in dictionary - Honik89 - 03-01-2017
I've tried with this hash file:
nano hash
$2a$05$LhayLxezLhK1LhWvKxCyLOj0j1u.Kj0jZ0pEmm134uzrQlFvQJLF6
with this dictionary file:
nano dizionario
hashash
cathasho
testtest
hashcat
password1
password2
Then my command was:
hashcat -m 3200 hash dizionario -o result.txt
with this response:
hashcat (v3.30-377-ga509221) starting...
OpenCL Platform #1: Apple
=========================
* Device #1: Intel(R) Core(TM) i5-4278U CPU @ 2.60GHz, skipped
* Device #2: Iris, 384/1536 MB allocatable, 40MCU
Hashes: 1 digests; 1 unique digests, 1 unique salts
Bitmaps: 16 bits, 65536 entries, 0x0000ffff mask, 262144 bytes, 5/13 rotates
Rules: 1
Applicable Optimizers:
* Zero-Byte
* Single-Hash
* Single-Salt
Watchdog: Temperature abort trigger disabled
Watchdog: Temperature retain trigger disabled
Checked for weak hashes...Integer overflow detected in keyspace of wordlist: dizionario
The wordlist or mask you are using is too small.
Therefore, hashcat is unable to utilize the full parallelization power of your device(s).
The cracking speed will drop.
Workaround: https://hashcat.net/wiki/doku.php?id=frequently_asked_questions#how_to_create_more_work_for_full_speed
INFO: approaching final keyspace, workload adjusted
Session..........: hashcat
Status...........: Exhausted
Hash.Type........: bcrypt, Blowfish(OpenBSD)
Hash.Target......: $2a$05$LhayLxezLhK1LhWvKxCyLOj0j1u.Kj0jZ0pEmm134uzrQlFvQJLF6
Time.Started.....: Tue Feb 28 22:59:51 2017 (0 secs)
Time.Estimated...: Tue Feb 28 22:59:51 2017 (0 secs)
Input.Base.......: File (dizionario)
Input.Queue......: 1/1 (100.00%)
Speed.Dev.#2.....: 0 H/s (0.00ms)
Recovered........: 0/1 (0.00%) Digests, 0/1 (0.00%) Salts
Progress.........: 0
Rejected.........: 0
Restore.Point....: 0
Candidates.#2....: [Copying]
Started: Tue Feb 28 22:59:50 2017
Stopped: Tue Feb 28 22:59:52 2017
Where is the problem? :-S
RE: Problem get password that is in dictionary - epixoip - 03-01-2017
Something is not right with your "dizionario" wordlist:
Quote:Integer overflow detected in keyspace of wordlist: dizionario
Progress.........: 0
Candidates.#2....: [Copying]
I don't think that file is the one you think it is.
RE: Problem get password that is in dictionary - Honik89 - 03-01-2017
With the same command, sometimes I've not the overflow. I don't understand what is the problem. I created "dizionario" with nano.Is it correct?
RE: Problem get password that is in dictionary - Honik89 - 03-01-2017
I don't know why, but if I change the namefile dizionario to dizionario.txt and hash to hash.hash the result is:
hashcat (v3.30-377-ga509221) starting...
OpenCL Platform #1: Apple
=========================
* Device #1: Intel(R) Core(TM) i5-4278U CPU @ 2.60GHz, skipped
* Device #2: Iris, 384/1536 MB allocatable, 40MCU
Hashes: 1 digests; 1 unique digests, 1 unique salts
Bitmaps: 16 bits, 65536 entries, 0x0000ffff mask, 262144 bytes, 5/13 rotates
Rules: 1
Applicable Optimizers:
* Zero-Byte
* Single-Hash
* Single-Salt
Watchdog: Temperature abort trigger disabled
Watchdog: Temperature retain trigger disabled
Cache-hit dictionary stats dizionario.txt: 54 bytes, 6 words, 6 keyspace
The wordlist or mask you are using is too small.
Therefore, hashcat is unable to utilize the full parallelization power of your device(s).
The cracking speed will drop.
Workaround: https://hashcat.net/wiki/doku.php?id=frequently_asked_questions#how_to_create_more_work_for_full_speed
INFO: approaching final keyspace, workload adjusted
Session..........: hashcat
Status...........: Exhausted
Hash.Type........: bcrypt, Blowfish(OpenBSD)
Hash.Target......: $2a$05$LhayLxezLhK1LhWvKxCyLOj0j1u.Kj0jZ0pEmm134uzrQlFvQJLF6
Time.Started.....: Wed Mar 1 16:10:52 2017 (0 secs)
Time.Estimated...: Wed Mar 1 16:10:52 2017 (0 secs)
Input.Base.......: File (dizionario.txt)
Input.Queue......: 1/1 (100.00%)
Speed.Dev.#2.....: 0 H/s (2.94ms)
Recovered........: 0/1 (0.00%) Digests, 0/1 (0.00%) Salts
Progress.........: 6/6 (100.00%)
Rejected.........: 0/6 (0.00%)
Restore.Point....: 6/6 (100.00%)
Candidates.#2....: hashash -> password2
Started: Wed Mar 1 16:10:51 2017
Stopped: Wed Mar 1 16:10:54 2017
Why?
Also with MD5, the same problem:
"echo "password" |md5 >> hash"
then
hashcat -m 0 -a 0 hash dizionario.txt -o ris.txt
Session..........: hashcat
Status...........: Exhausted
Hash.Type........: MD5
Hash.Target......: 286755fad04869ca523320acce0dc6a4
Time.Started.....: Wed Mar 1 16:26:45 2017 (0 secs)
Time.Estimated...: Wed Mar 1 16:26:45 2017 (0 secs)
Input.Base.......: File (dizionario.txt)
Input.Queue......: 1/1 (100.00%)
Speed.Dev.#2.....: 0 H/s (0.02ms)
Recovered........: 0/1 (0.00%) Digests, 0/1 (0.00%) Salts
Progress.........: 7/7 (100.00%)
Rejected.........: 0/7 (0.00%)
Restore.Point....: 7/7 (100.00%)
Candidates.#2....: hashash -> password
RE: Problem get password that is in dictionary - philsmd - 03-01-2017
This is not the correct way to generate hashes.
echo always outputs a string with newlines.
BTW: this question is even present in the MOST frequently asked questions https://hashcat.net/faq#i_created_a_hash_with_echo_test_md5sum_but_hashcat_fails_to_crack_it
RE: Problem get password that is in dictionary - Honik89 - 03-02-2017
(03-01-2017, 05:44 PM)philsmd Wrote: This is not the correct way to generate hashes.
echo always outputs a string with newlines.
BTW: this question is even present in the MOST frequently asked questions https://hashcat.net/faq#i_created_a_hash_with_echo_test_md5sum_but_hashcat_fails_to_crack_it
Ok.. I cleaned the hash with str.replace of python.. Maybe was not good.. now it's correct.
So.. How can I create my known hash file without echo?
echo -n "myhash" >> hash ?
RE: Problem get password that is in dictionary - royce - 03-02-2017
Yes. Try it to see if it works. You are empowered to to definitively answer your own question.
