Possible to use hashcat to convert password list to hex on the fly?
#3
(09-20-2021, 05:40 PM)philsmd Wrote: rules.... just append with the append rule $\x00 16 times and then truncate the password

my.rule
Code:
$\x00 $\x00 $\x00 $\x00 $\x00 $\x00 $\x00 $\x00 $\x00 $\x00 $\x00 $\x00 $\x00 $\x00 $\x00 $\x00 'G

The problem here might only be, what should happen with passwords longer than 16 ? but I guess these aren't that common (of course this depends on the user base).

for mask attacks, you can use the hashcat mask file support (.hcmask): all lines within your hcmask file have a mask with a mask length of exactly 16 bytes (also see --hex-charset option etc). see https://hashcat.net/wiki/doku.php?id=mas...mask_files and https://hashcat.net/faq#what_is_a_hashcat_mask_file


Thanks for the feedback, tried again now with a test hash and for some reason it worked now, so maybe I had some typos in my first attempt that I didn't see, or if I had the --hex-wordlist flag included when I shouldn't or something similar, argh. 

For my first attempt I used a rule $\x00 Z9 'G which failed, but I probably overlooked something. Typical picnic-situation going on here ("problem in char, not in computer"), haha!

As for pw > 16, it's not possible in the SW, so truncating at 16 is good. 

Update; tried again on my other machine (#1) and it failed. On machine #1 I used --hex-charset with the rule and it failed, but on the machine (#2) I'm writing this on I used --hex-charset and it worked. Tried removing --hex-charset on machine #1 and then it worked with the sample hash, same thing on machine #2, so a bit confused why it works both with and without using --hex-charset on machine #2, whereas on machine #1 it only works without using --hex-charset.

Hopefully final update; same on both machines now, but it seems like what makes the different results appear is the password candidate. Before testing with the same hashes on both machines I had the hash for the word "panini" on machine #1 and "Abracadabra2020" on machine #2. And with "Abracadabra2020" hashcat could crack the hash both with and without using --hex-charset, but when trying to crack the hash for "panini", it can only be done without --hex-charset. So basically, no need to use --hex-charset, but I think that's where my confusion originated from.

Anways, I consider this solved now. Thanks again, philsmd.


Messages In This Thread
RE: Possible to use hashcat to convert password list to hex on the fly? - by voideater - 09-21-2021, 09:18 AM