<![CDATA[hashcat Forum - General Talk]]>

<![CDATA[hashcat Forum - General Talk]]> https://hashcat.net/forum/ Thu, 14 May 2026 09:57:23 +0000 MyBB <![CDATA[Need help to open locked pdf]]> https://hashcat.net/forum/thread-13603.html Fri, 01 May 2026 06:22:52 +0000 Dim]]> https://hashcat.net/forum/thread-13603.html Forgot Password]]> Forgot Password]]> <![CDATA[Please Help !]]> https://hashcat.net/forum/thread-13577.html Mon, 06 Apr 2026 14:41:36 +0000 illusion147]]> https://hashcat.net/forum/thread-13577.html
I actually have a Crucial X10 Pro SSD, which I locked with a password using the "Crucial Portable SSD Utility" software. I believe this software from Crucial use a 256-bit encryption to lock the SSD.

I know a couple of password options, is there any way you can help my use Hashcat for this software ?

I have lot all my collection of pictures and vidoes of my dead grandfather who I was extremely close too, I was his only grandson.

Grateful if anyone can help me !

Thanking you,
Best regards,
Ajay Shriram]]>
I actually have a Crucial X10 Pro SSD, which I locked with a password using the "Crucial Portable SSD Utility" software. I believe this software from Crucial use a 256-bit encryption to lock the SSD.

I know a couple of password options, is there any way you can help my use Hashcat for this software ?

I have lot all my collection of pictures and vidoes of my dead grandfather who I was extremely close too, I was his only grandson.

Grateful if anyone can help me !

Thanking you,
Best regards,
Ajay Shriram]]> <![CDATA[noob can anyone help]]> https://hashcat.net/forum/thread-13567.html Mon, 23 Mar 2026 16:00:45 +0000 ste980]]> https://hashcat.net/forum/thread-13567.html
C:\hashcat-7.1.2>hashcat.exe -m 22000 output_hash.hc22000 -a 3 ?a?a?a?a?a?a?a?a?a?a
hashcat (v7.1.2) starting

OpenCL API (OpenCL 3.0 ) - Platform #1 [Intel(R) Corporation]
=============================================================
* Device #01: Intel(R) Graphics, 3543/7086 MB (1771 MB allocatable), 8MCU

Minimum password length supported by kernel: 8
Maximum password length supported by kernel: 63
Minimum salt length supported by kernel: 0
Maximum salt length supported by kernel: 256

Hash 'output_hash.hc22000': Separator unmatched
No hashes loaded.]]>
C:\hashcat-7.1.2>hashcat.exe -m 22000 output_hash.hc22000 -a 3 ?a?a?a?a?a?a?a?a?a?a
hashcat (v7.1.2) starting

OpenCL API (OpenCL 3.0 ) - Platform #1 [Intel(R) Corporation]
=============================================================
* Device #01: Intel(R) Graphics, 3543/7086 MB (1771 MB allocatable), 8MCU

Minimum password length supported by kernel: 8
Maximum password length supported by kernel: 63
Minimum salt length supported by kernel: 0
Maximum salt length supported by kernel: 256

Hash 'output_hash.hc22000': Separator unmatched
No hashes loaded.]]> <![CDATA[Problem Extracting Hash from Captured WPA2 Handshake (M1-M2)]]> https://hashcat.net/forum/thread-13490.html Thu, 19 Feb 2026 20:31:18 +0000 unmed]]> https://hashcat.net/forum/thread-13490.html
I have a problem extracting Hashes from a WPA2 Handshake captured using Wireshark/TShark (not at the same time) by monitoring interface that was acting as an AP. I am using hcxpcapngtool but it does not seem to extract any hashes even though it seems to me that valid M1 and M2 from the 4-Way Handshake were captured.

The Tool is giving me the following output:

Code:
hcxpcapngtool 6.3.5 reading from tshark.pcapng...

summary capture file

--------------------

file name................................: tshark.pcapng

version (pcapng).........................: 1.0

operating system.........................: Linux 6.16.8+The-Distribution-Which-Does-Not-Handle-OpenCL-Well (Kali)-amd64

application..............................: Dumpcap (Wireshark) 4.6.3

interface name...........................: wlan1

interface vendor.........................: 000000

openSSL version..........................: 1.1

weak candidate...........................: N/A

MAC ACCESS POINT.........................: 000000000000 (incremented on every new client)

MAC CLIENT...............................: 000000000000

REPLAYCOUNT..............................: 0

ANONCE...................................: 0000000000000000000000000000000000000000000000000000000000000000

SNONCE...................................: 0000000000000000000000000000000000000000000000000000000000000000

timestamp minimum (timestamp)............: 19.02.2026 16:36:20 (1771518980)

timestamp maximum (timestamp)............: 19.02.2026 16:36:23 (1771518983)

duration of the dump tool (seconds)......: 3

used capture interfaces..................: 1

link layer header type...................: DLT_EN10MB (1)

endianness (capture system)..............: little endian

packets inside...........................: 8

EAPOL ANONCE error corrections (NC)......: not detected

session summary

---------------

processed pcapng files................: 1

When looking in my capture I can see Message 1 and Message 2 Packets that belong together and have the Nonces set to valid values. I am attaching the capture because this was just a test not using real values (the password is password).

Do you have any idea on what might be the problem?

.zip

.zip

tshark.zip (Size: 873 bytes / Downloads: 1) ]]>
I have a problem extracting Hashes from a WPA2 Handshake captured using Wireshark/TShark (not at the same time) by monitoring interface that was acting as an AP. I am using hcxpcapngtool but it does not seem to extract any hashes even though it seems to me that valid M1 and M2 from the 4-Way Handshake were captured.

The Tool is giving me the following output:

Code:
hcxpcapngtool 6.3.5 reading from tshark.pcapng...

summary capture file

--------------------

file name................................: tshark.pcapng

version (pcapng).........................: 1.0

operating system.........................: Linux 6.16.8+The-Distribution-Which-Does-Not-Handle-OpenCL-Well (Kali)-amd64

application..............................: Dumpcap (Wireshark) 4.6.3

interface name...........................: wlan1

interface vendor.........................: 000000

openSSL version..........................: 1.1

weak candidate...........................: N/A

MAC ACCESS POINT.........................: 000000000000 (incremented on every new client)

MAC CLIENT...............................: 000000000000

REPLAYCOUNT..............................: 0

ANONCE...................................: 0000000000000000000000000000000000000000000000000000000000000000

SNONCE...................................: 0000000000000000000000000000000000000000000000000000000000000000

timestamp minimum (timestamp)............: 19.02.2026 16:36:20 (1771518980)

timestamp maximum (timestamp)............: 19.02.2026 16:36:23 (1771518983)

duration of the dump tool (seconds)......: 3

used capture interfaces..................: 1

link layer header type...................: DLT_EN10MB (1)

endianness (capture system)..............: little endian

packets inside...........................: 8

EAPOL ANONCE error corrections (NC)......: not detected

session summary

---------------

processed pcapng files................: 1

When looking in my capture I can see Message 1 and Message 2 Packets that belong together and have the Nonces set to valid values. I am attaching the capture because this was just a test not using real values (the password is password).

Do you have any idea on what might be the problem?

.zip

.zip

tshark.zip (Size: 873 bytes / Downloads: 1) ]]> <![CDATA[macOS Keychain Help]]> https://hashcat.net/forum/thread-13480.html Thu, 05 Feb 2026 18:24:21 +0000 Eldudderino]]> https://hashcat.net/forum/thread-13480.html
I obtain an image of the mac using CAINE.

I was able to decrypt 632GB of data from that image.

The user account that has the unknown password...can I obtain a password list from the various keychain databases? Or any useful information what so ever?]]>
I obtain an image of the mac using CAINE.

I was able to decrypt 632GB of data from that image.

The user account that has the unknown password...can I obtain a password list from the various keychain databases? Or any useful information what so ever?]]> <![CDATA[7-zip 11600 Cracking - Benchmark around 600 kH/s, real world around 28 kH/s (7z 7zip)]]> https://hashcat.net/forum/thread-13473.html Thu, 29 Jan 2026 04:36:41 +0000 postwar]]> https://hashcat.net/forum/thread-13473.html
I am trying to crack a few 7-zip archives. Ironically I don't believe I created any of them to be 'uncrackable'. I incorrectly believed 7z was a weak cipher. I put these on a cloud provider and my threat model was I didn't want it to be the very first password that they tried (1234).

I have not yet tried a dictionary derived from password leaks. It may be a password like "qwerty" (simple function/rule of a US keyboard), but it should not be a password like "letmein" (grammar rules of English). So I have not focused on using a leak dictionary.

I have an RTX 3070. My benchmark is around 600 kH/s but in the real world it's around 28 kH/s = 28,000 hashes/second.

Is anything close to 600 kH/s = 600,000 hashes/second possible on this hardware? I am on The-Distribution-Which-Does-Not-Handle-OpenCL-Well (Kali) Linux and all my drivers seem to be working. I installed the 'everything' set in The-Distribution-Which-Does-Not-Handle-OpenCL-Well (Kali) so some convenience features (e.g. prebuilt dictionaries/rules) are included.

I think my commands and methodology are correct because I already cracked one 7z this way. I tried some of the stuff in the FAQ about the gpu being too slow. I am mostly running a straight mask bruteforce (?l?d) but I've also tried generating a dictionary of attacks with mp32. I am very intrigued by the max character parameter. I believe my passwords probably do not have the same character more than once. The parameter in my version only allows a max of 2 or greater. I would love to set it to 2 or greater, or maybe process the dictionary.txt with another linux command to remove pointless lines.

I have brute forced up to around 5 characters for plausible passwords. If I can do 600,000 H/s then I believe I can brute it. Otherwise I need to generate a much smaller key space.

I also have several RX 470 mining GPUs but it would take some work to set them up.

Creation dates of 7z I am cracking:
2015-12-14
2018-01-13
2020-11-12

Notably, it seems the pre-2019 files may use a weaker cryptography.

https://sourceforge.net/p/sevenzip/bugs/2176/

My crypto knowledge is just the 101 level. I don't know how important this flaw is.

Thanks for any help.]]>
I am trying to crack a few 7-zip archives. Ironically I don't believe I created any of them to be 'uncrackable'. I incorrectly believed 7z was a weak cipher. I put these on a cloud provider and my threat model was I didn't want it to be the very first password that they tried (1234).

I have not yet tried a dictionary derived from password leaks. It may be a password like "qwerty" (simple function/rule of a US keyboard), but it should not be a password like "letmein" (grammar rules of English). So I have not focused on using a leak dictionary.

I have an RTX 3070. My benchmark is around 600 kH/s but in the real world it's around 28 kH/s = 28,000 hashes/second.

Is anything close to 600 kH/s = 600,000 hashes/second possible on this hardware? I am on The-Distribution-Which-Does-Not-Handle-OpenCL-Well (Kali) Linux and all my drivers seem to be working. I installed the 'everything' set in The-Distribution-Which-Does-Not-Handle-OpenCL-Well (Kali) so some convenience features (e.g. prebuilt dictionaries/rules) are included.

I think my commands and methodology are correct because I already cracked one 7z this way. I tried some of the stuff in the FAQ about the gpu being too slow. I am mostly running a straight mask bruteforce (?l?d) but I've also tried generating a dictionary of attacks with mp32. I am very intrigued by the max character parameter. I believe my passwords probably do not have the same character more than once. The parameter in my version only allows a max of 2 or greater. I would love to set it to 2 or greater, or maybe process the dictionary.txt with another linux command to remove pointless lines.

I have brute forced up to around 5 characters for plausible passwords. If I can do 600,000 H/s then I believe I can brute it. Otherwise I need to generate a much smaller key space.

I also have several RX 470 mining GPUs but it would take some work to set them up.

Creation dates of 7z I am cracking:
2015-12-14
2018-01-13
2020-11-12

Notably, it seems the pre-2019 files may use a weaker cryptography.

https://sourceforge.net/p/sevenzip/bugs/2176/

My crypto knowledge is just the 101 level. I don't know how important this flaw is.

Thanks for any help.]]> <![CDATA[How to use hashcat with JohnTheRipper "if needed" to recover a lost password .7z file]]> https://hashcat.net/forum/thread-13472.html Sat, 24 Jan 2026 21:36:06 +0000 youthmp]]> https://hashcat.net/forum/thread-13472.html <![CDATA[Inquiry About Hashcat GPU Compute Service]]> https://hashcat.net/forum/thread-13459.html Thu, 08 Jan 2026 10:23:34 +0000 Dhayanithi]]> https://hashcat.net/forum/thread-13459.html I am interested in learning more about the Hashcat GPU Compute service. Could you please provide details on:

Available GPU models (e.g., H100, A100, RTX 4090)
Pricing and billing structure (hourly or monthly)
Registration process and requirements
Any restrictions or policies for usage

My intended use is for authorized password recovery and security research. I would appreciate guidance on how to register and access the service.
Thank you,
Dhayanithi]]> I am interested in learning more about the Hashcat GPU Compute service. Could you please provide details on:

Available GPU models (e.g., H100, A100, RTX 4090)
Pricing and billing structure (hourly or monthly)
Registration process and requirements
Any restrictions or policies for usage

My intended use is for authorized password recovery and security research. I would appreciate guidance on how to register and access the service.
Thank you,
Dhayanithi]]> <![CDATA[How to create dictionary limit from 8 - 12 character]]> https://hashcat.net/forum/thread-13423.html Wed, 12 Nov 2025 07:25:42 +0000 dtthhoanglong]]> https://hashcat.net/forum/thread-13423.html
Example: dung1234, dungthao12@@, phuong124,thaodung44@]]>
Example: dung1234, dungthao12@@, phuong124,thaodung44@]]> <![CDATA[word list]]> https://hashcat.net/forum/thread-13418.html Sun, 02 Nov 2025 15:18:09 +0000 msalman]]> https://hashcat.net/forum/thread-13418.html
https://pasteboard.co/zcOkFcxfzujZ.png]]>
https://pasteboard.co/zcOkFcxfzujZ.png]]> <![CDATA[Password TP Link Archer C7]]> https://hashcat.net/forum/thread-13417.html Fri, 31 Oct 2025 21:50:33 +0000 kuny1991]]> https://hashcat.net/forum/thread-13417.html I need to crack the password to my TP Link Archer C7. I am connected to wifi, but I don't know the password for the administration. The default was "admin".
Do you have a tip on how to crack this, how to get the "handshake" for example?
Thank you]]> I need to crack the password to my TP Link Archer C7. I am connected to wifi, but I don't know the password for the administration. The default was "admin".
Do you have a tip on how to crack this, how to get the "handshake" for example?
Thank you]]> <![CDATA[winrar zip password]]> https://hashcat.net/forum/thread-13291.html Wed, 18 Jun 2025 10:13:44 +0000 jimmyq]]> https://hashcat.net/forum/thread-13291.html <![CDATA[WannaCry recovery]]> https://hashcat.net/forum/thread-12508.html Thu, 13 Feb 2025 19:14:25 +0000 TrowTrow]]> https://hashcat.net/forum/thread-12508.html
A friend was affected by wannacry ransomware.
Is it possible, using hashcat to recover the key used by the ransomware to cipher files.

It appears that file which are same unciphered look the same when ciphered meaning no salt.
It also seems to be AES 128.

But which methodology should be the good one ?

I have access to hundreds of RTX4090 to do the job if computational power matters.

Thanks]]>
A friend was affected by wannacry ransomware.
Is it possible, using hashcat to recover the key used by the ransomware to cipher files.

It appears that file which are same unciphered look the same when ciphered meaning no salt.
It also seems to be AES 128.

But which methodology should be the good one ?

I have access to hundreds of RTX4090 to do the job if computational power matters.

Thanks]]> <![CDATA[the speed drops after some time]]> https://hashcat.net/forum/thread-12448.html Thu, 02 Jan 2025 11:02:33 +0000 svobodnui11]]> https://hashcat.net/forum/thread-12448.html
When the dictionary attack starts, the speed is excellent, but after some time, I see that the speed drops by about 6 times, if it was 1.2 million per second, then the output will be about 240 thousand.

maybe some additional options need to be written in the command or the dictionaries need to be optimized somehow, what do you advise.

and yes, my dictionaries are from 10 GB and above, some are 80 GB]]>
When the dictionary attack starts, the speed is excellent, but after some time, I see that the speed drops by about 6 times, if it was 1.2 million per second, then the output will be about 240 thousand.

maybe some additional options need to be written in the command or the dictionaries need to be optimized somehow, what do you advise.

and yes, my dictionaries are from 10 GB and above, some are 80 GB]]> <![CDATA[Geth Ethereum Keystore password recovery]]> https://hashcat.net/forum/thread-12439.html Sat, 28 Dec 2024 20:04:59 +0000 LowellChief]]> https://hashcat.net/forum/thread-12439.html
I used this link to create my keystore hash

https://stealthsploit.com/2017/06/12/eth...-cracking/

I set my txt file up in a similar way except I used "262144" instead of 1024 for the N value

I created a password txt file using several combinations of passwords I used from back then

I'm using hashcat 6.2.6 and windows 11

I've opened a terminal in hashcat and tried a few of the commands I've found out there and added my hash.txt and password.txt in the line but just had a series of errors that do not work

Honestly, I was able to build 4 ETh mining rigs but I have not a clue what I am doing in trying to crack this password.

Any suggestions on how I should enter my command line in hashcat?

Thank you, LC]]>
I used this link to create my keystore hash

https://stealthsploit.com/2017/06/12/eth...-cracking/

I set my txt file up in a similar way except I used "262144" instead of 1024 for the N value

I created a password txt file using several combinations of passwords I used from back then

I'm using hashcat 6.2.6 and windows 11

I've opened a terminal in hashcat and tried a few of the commands I've found out there and added my hash.txt and password.txt in the line but just had a series of errors that do not work

Honestly, I was able to build 4 ETh mining rigs but I have not a clue what I am doing in trying to crack this password.

Any suggestions on how I should enter my command line in hashcat?

Thank you, LC]]>