09-28-2013, 10:00 AM
Hello all;
I have a problem with using custom character set.
I make a sample `hash_salt.txt` as input hash file, with bellow data:
hash_salt.txt:
The separator between hash and salt is `@`.
Then i set password length to 4 characters. (The password is `pass`)
And when i try this cmd:
The hashcat find successfully that and output of `out.txt` is:
Now when i want to use my custom character set, like `-1 aps ?1?1?1?1` because i know that password is `pass` and have only `p`, `a` and `s` characters within it,
But with `-1 aps ?1?1?1?1` in this cmd:
The hashcat can not find the `pass`.
To cover `pass` string in mask brute force range attack, what is a minimum custom character set for that? this `-1 aps ?1?1?1?1` character set is wrong?
(With assume that we know the password string consist of `p`, `a` and `s` characters and length of it is 4)
I have a problem with using custom character set.
I make a sample `hash_salt.txt` as input hash file, with bellow data:
hash_salt.txt:
Code:
b0393ef671f10d32135ee40dd9ad6837@zt_uru[|fVL5::\cbo+&fZDAXJE1!_
The separator between hash and salt is `@`.
Then i set password length to 4 characters. (The password is `pass`)
And when i try this cmd:
Code:
hashcat-cli64.exe -a 3 -m 2711 --pw-min=4 --pw-max=4 --hex-charset -p @ -o "out.txt" --outfile-format=3 -n 8 -c 256 "hash_salt.txt" -1 ?l ?1?1?1?1
The hashcat find successfully that and output of `out.txt` is:
Code:
b0393ef671f10d32135ee40dd9ad6837@zt_uru[|fVL5::\cbo+&fZDAXJE1!_@pass
Now when i want to use my custom character set, like `-1 aps ?1?1?1?1` because i know that password is `pass` and have only `p`, `a` and `s` characters within it,
But with `-1 aps ?1?1?1?1` in this cmd:
Code:
hashcat-cli64.exe -a 3 -m 2711 --pw-min=4 --pw-max=4 --hex-charset -p @ -o "out.txt" --outfile-format=3 -n 8 -c 256 "hash_salt.txt" -1 aps ?1?1?1?1
The hashcat can not find the `pass`.
To cover `pass` string in mask brute force range attack, what is a minimum custom character set for that? this `-1 aps ?1?1?1?1` character set is wrong?
(With assume that we know the password string consist of `p`, `a` and `s` characters and length of it is 4)