Developping a strategy for few hundred NTLM hashes
#2
first you could test some of your hashes with websites like crackstation (up to 20 hashes at once) and other to see whether some of your passes are already known

if applicable use windows and cuda sdk, unless you installed and tried your setup before, this will save you a lot of time and nerves

hashcat doesnt store tested passwords by default, there is a feature called hashcat the brain but this come with some disadvantages (it will lower the overall cracking speed, especially for fast hashes (as your NTLM) and needs storage for storing the memoryfiles) the brain is quite a nice option for really slow hashes like bcrypt and so on, but not really for fast hashes (could be an option for cracking a very specific single hash)

when using masks, you can easily do an attack with 8* times ?a and option increment, with your 4070 in a day, so all you have to attack with afterwards is at least length 9

after cracking (or getting the passwords from websites like above) the first hashes, take a look at the passwords and examine them, do they seem totally random or do they maybe follow a pattern, what kind of language? german, english, italiano, spanish? all these infos could help you to determine the best way for the following attacks
Reply


Messages In This Thread
RE: Developping a strategy for few hundred NTLM hashes - by Snoopy - 10-12-2023, 05:50 PM