hashcat Forum Support hashcat v
Hashing Linux Passwords

Threaded Mode
Hashing Linux Passwords
slawson Offline
Member
***
Posts: 101
Threads: 34
Joined: Oct 2014
#1
10-30-2019, 03:18 PM
I am missing something simple, but I am not sure what.  Here is what I have done so far.

made a copy of the /etc/passwd and /etc/shadow then typed:

unshadow passwd shadow > linux.txt
hashcat -m0 -a0 linux.txt dictionaryfile.txt

My hashfile looks like this:
harold:xxxhashxxx:501:501::/home/harold:/bin/bash

I am getting the error: Token length exception.  I have tried removing everything out of the linux.txt except for the hash itself.  But it still won't load the hashes.

Is my hashtype and hashfile formatted correctly?
Find
Reply
slawson Offline
Member
***
Posts: 101
Threads: 34
Joined: Oct 2014
#2
10-30-2019, 03:21 PM
Nevermind I found it.

-m 500
Find
Reply
royce Offline
Moderator à la mode
******
Posts: 930
Threads: 4
Joined: Jan 2015
#3
10-30-2019, 03:22 PM (This post was last modified: 10-30-2019, 05:18 PM by royce.)
hashcat can't parse the entire /etc/shadow format with all fields.

hashcat expects either a list of raw hashes (or, when using --username, user:hash pairs)

Just trim off the first two fields (cut -d: -f1-2)

[Edit: my bad; @philsmd points out that hashcat will parse a full /etc/shadow.]
~
Find
Reply
slawson Offline
Member
***
Posts: 101
Threads: 34
Joined: Oct 2014
#4
10-30-2019, 03:27 PM
Thank you.
Find
Reply