hashcat Forum Support hashcat v
NTLM v2 hashes, min 15 characters

Threaded Mode
NTLM v2 hashes, min 15 characters
cathash Offline
Junior Member
**
Posts: 2
Threads: 1
Joined: Sep 2022
#1
09-01-2022, 06:02 AM
I have been of provided a large group of AD hashes, for testing by request. The password complexity requirements are set to a minimum of fifteen characters.

Any suggestions for the best plan of attack? Hybrid with some large dictionaries?

Thank you
Find
Reply
marc1n Offline
Banned
Posts: 385
Threads: 1
Joined: Aug 2020
#2
09-02-2022, 03:06 PM
https://hashcat.net/wiki/
Find
Reply
cathash Offline
Junior Member
**
Posts: 2
Threads: 1
Joined: Sep 2022
#3
09-02-2022, 05:41 PM
(09-02-2022, 03:06 PM)marc1n Wrote: https://hashcat.net/wiki/

Yeah, I've read it, thanks... Very helpful of you. Undecided

Maybe someone could provide some real-world experience thoughts?
Find
Reply
Snoopy Offline
Posting Freak
*****
Posts: 889
Threads: 15
Joined: Sep 2017
#4
09-06-2022, 06:54 PM
(09-02-2022, 05:41 PM)cathash Wrote:
(09-02-2022, 03:06 PM)marc1n Wrote: https://hashcat.net/wiki/

Yeah, I've read it, thanks... Very helpful of you. Undecided

Maybe someone could provide some real-world experience thoughts?

well you could use reject rule (but this way you will loose the possibility to use other rules)

you can use https://hashcat.net/wiki/doku.php?id=hashcat_utils#len to prepare any given wordlist and only use passwords from length lets say min 12 or 14 (depending on the ruleset, there are rules for appending or deleting)

the same can be achieved with princeprocessor https://github.com/hashcat/princeprocessor https://hashcat.net/wiki/doku.php?id=princeprocessor see option --pw-min
Find
Reply