Problem get password that is in dictionary
#1
Hello everybody.
I' m testing on OS X Sierra with Hashcat v3.30-377-ga509221.

I've created a personal dictionary of 8 lines with my password. Then i've converted my password to bcrypto hash online and I've created a file with it.

In my terminal I've typed: 

hashcat -m 3200 hash diczi -o risu.txt

and also tried:

hashcat -a 0 -m 3200 hash diczi-o risu.txt

The result is:

Status...........: Exhausted

and no password was found.
I also tried with SHA1 without problem.

What am I doing wrong?
Thank you
#2
Try testing with the example hashcat hash:

https://hashcat.net/wiki/doku.php?id=example_hashes

This is "hashcat": $2a$05$LhayLxezLhK1LhWvKxCyLOj0j1u.Kj0jZ0pEmm134uzrQlFvQJLF6

If this works, it's more likely to be the tool that was used to create the hash.
~
#3
Hi
Check the hash with an online hash identifier
https://www.onlinehashcrack.com/hash-identification.php
Then you see if the hash is OK
#4
I've tried with this hash file:

nano hash

$2a$05$LhayLxezLhK1LhWvKxCyLOj0j1u.Kj0jZ0pEmm134uzrQlFvQJLF6

with this dictionary file:

nano dizionario

hashash
cathasho
testtest
hashcat
password1
password2

Then my command was:

hashcat -m 3200 hash dizionario -o result.txt

with this response:

hashcat (v3.30-377-ga509221) starting...

OpenCL Platform #1: Apple
=========================
* Device #1: Intel(R) Core(TM) i5-4278U CPU @ 2.60GHz, skipped
* Device #2: Iris, 384/1536 MB allocatable, 40MCU

Hashes: 1 digests; 1 unique digests, 1 unique salts
Bitmaps: 16 bits, 65536 entries, 0x0000ffff mask, 262144 bytes, 5/13 rotates
Rules: 1

Applicable Optimizers:
* Zero-Byte
* Single-Hash
* Single-Salt

Watchdog: Temperature abort trigger disabled
Watchdog: Temperature retain trigger disabled

Checked for weak hashes...Integer overflow detected in keyspace of wordlist: dizionario

The wordlist or mask you are using is too small.
Therefore, hashcat is unable to utilize the full parallelization power of your device(s).
The cracking speed will drop.
Workaround: https://hashcat.net/wiki/doku.php?id=fre...full_speed

INFO: approaching final keyspace, workload adjusted       

Session..........: hashcat                                
Status...........: Exhausted
Hash.Type........: bcrypt, Blowfish(OpenBSD)
Hash.Target......: $2a$05$LhayLxezLhK1LhWvKxCyLOj0j1u.Kj0jZ0pEmm134uzrQlFvQJLF6
Time.Started.....: Tue Feb 28 22:59:51 2017 (0 secs)
Time.Estimated...: Tue Feb 28 22:59:51 2017 (0 secs)
Input.Base.......: File (dizionario)
Input.Queue......: 1/1 (100.00%)
Speed.Dev.#2.....:        0 H/s (0.00ms)
Recovered........: 0/1 (0.00%) Digests, 0/1 (0.00%) Salts
Progress.........: 0
Rejected.........: 0
Restore.Point....: 0
Candidates.#2....: [Copying]

Started: Tue Feb 28 22:59:50 2017
Stopped: Tue Feb 28 22:59:52 2017

Where is the problem? :-S
#5
Something is not right with your "dizionario" wordlist:

Quote:Integer overflow detected in keyspace of wordlist: dizionario
Progress.........: 0
Candidates.#2....: [Copying]

I don't think that file is the one you think it is.
#6
With the same command, sometimes I've not the overflow. I don't understand what is the problem. I created "dizionario" with nano.Is it correct?
#7
I don't know why, but if I change the namefile dizionario to dizionario.txt and hash to hash.hash the result is:

hashcat (v3.30-377-ga509221) starting...

OpenCL Platform #1: Apple
=========================
* Device #1: Intel(R) Core(TM) i5-4278U CPU @ 2.60GHz, skipped
* Device #2: Iris, 384/1536 MB allocatable, 40MCU

Hashes: 1 digests; 1 unique digests, 1 unique salts
Bitmaps: 16 bits, 65536 entries, 0x0000ffff mask, 262144 bytes, 5/13 rotates
Rules: 1

Applicable Optimizers:
* Zero-Byte
* Single-Hash
* Single-Salt

Watchdog: Temperature abort trigger disabled
Watchdog: Temperature retain trigger disabled

Cache-hit dictionary stats dizionario.txt: 54 bytes, 6 words, 6 keyspace

The wordlist or mask you are using is too small.
Therefore, hashcat is unable to utilize the full parallelization power of your device(s).
The cracking speed will drop.
Workaround: https://hashcat.net/wiki/doku.php?id=fre...full_speed

INFO: approaching final keyspace, workload adjusted

Session..........: hashcat
Status...........: Exhausted
Hash.Type........: bcrypt, Blowfish(OpenBSD)
Hash.Target......: $2a$05$LhayLxezLhK1LhWvKxCyLOj0j1u.Kj0jZ0pEmm134uzrQlFvQJLF6
Time.Started.....: Wed Mar 1 16:10:52 2017 (0 secs)
Time.Estimated...: Wed Mar 1 16:10:52 2017 (0 secs)
Input.Base.......: File (dizionario.txt)
Input.Queue......: 1/1 (100.00%)
Speed.Dev.#2.....: 0 H/s (2.94ms)
Recovered........: 0/1 (0.00%) Digests, 0/1 (0.00%) Salts
Progress.........: 6/6 (100.00%)
Rejected.........: 0/6 (0.00%)
Restore.Point....: 6/6 (100.00%)
Candidates.#2....: hashash -> password2

Started: Wed Mar 1 16:10:51 2017
Stopped: Wed Mar 1 16:10:54 2017

Why?

Also with MD5, the same problem:

"echo "password" |md5 >> hash"

then

hashcat -m 0 -a 0 hash dizionario.txt -o ris.txt

Session..........: hashcat
Status...........: Exhausted
Hash.Type........: MD5
Hash.Target......: 286755fad04869ca523320acce0dc6a4
Time.Started.....: Wed Mar 1 16:26:45 2017 (0 secs)
Time.Estimated...: Wed Mar 1 16:26:45 2017 (0 secs)
Input.Base.......: File (dizionario.txt)
Input.Queue......: 1/1 (100.00%)
Speed.Dev.#2.....: 0 H/s (0.02ms)
Recovered........: 0/1 (0.00%) Digests, 0/1 (0.00%) Salts
Progress.........: 7/7 (100.00%)
Rejected.........: 0/7 (0.00%)
Restore.Point....: 7/7 (100.00%)
Candidates.#2....: hashash -> password
#8
This is not the correct way to generate hashes.

echo always outputs a string with newlines.

BTW: this question is even present in the MOST frequently asked questions https://hashcat.net/faq#i_created_a_hash...o_crack_it
#9
(03-01-2017, 05:44 PM)philsmd Wrote: This is not the correct way to generate hashes.

echo always outputs a string with newlines.

BTW: this question is even present in the MOST frequently asked questions https://hashcat.net/faq#i_created_a_hash...o_crack_it

Ok.. I cleaned the hash with str.replace of python.. Maybe was not good.. now it's correct.
So.. How can I create my known hash file without echo?
echo -n "myhash" >> hash ?
#10
Yes. Try it to see if it works. You are empowered to to definitively answer your own question. Smile
~