it's just showing you a whole set (a range) of password candidates. The displayed password candidates in the "Candidates.#" line within the status output are neither meant to be complete, nor can they show you each and every mangled password candidate. They are only indicative such that the users see *some* of the passwords (the first password from a huge set and the last password from a huge set).
If you want to see all of them, you could use this:
This --stdout feature can be used for troubleshooting / debugging too, it will include the whole set of password candidates (if you use the correct / same parameters as with the command including the cracking, without the --stdout, but with the hash file).
of course the --stdout output can be very large and therefore you might need to either filter ("grep" in linux) it or limit it ("head"/"more"/"tail" in linux) etc
If you want to see all of them, you could use this:
Code:
hashcat --stdout -a 0 -r rules/best64.rule rockyou.txt
This --stdout feature can be used for troubleshooting / debugging too, it will include the whole set of password candidates (if you use the correct / same parameters as with the command including the cracking, without the --stdout, but with the hash file).
of course the --stdout output can be very large and therefore you might need to either filter ("grep" in linux) it or limit it ("head"/"more"/"tail" in linux) etc