3 Questions About Hashcat
#1
Hi mates. I have 3 questions and if you help me i will be happy

1)
I downloaded this v5.1.0
https://hashcat.net/files/hashcat-5.1.0.7z

I used this version under Windows.
When i capture a cap file i convert it to 22000 file with
hcxpcapngtool -o test.22000 --pmkid=test.16800 --hccapx=test.hccapx example.cap

But when i use this command:
hashcat64.exe -w 3 -a 3 -m 22000 example.22000 ?d?d?d?d?d?d?d?d

This does not work, i remembered this command gives an error (unknown command 22000) like this

How can use m 22000 with Hascat v510 (binaries) with windows.

What is the problem?




2)

For example i have 2 PMKIDS

33d186fac87212275b79ad69ab2211fa*e8377a38198b*cc6ea4556734*54544e45545f5a7958454c5f50563733
c05b0c7ebec2594fa1e7d262e5fa0845*d07ab5460ea1*4c569daa8410*54544e45542d31393037


i make a txt file and add these PMKIDS in it. PMKIDS.txt 
And the wifi passes are found with ?d?d?d?d?d?d?d?d command

hashcat64.exe -w 3 -a 3 -m 16800 PMKIDS.txt ?d?d?d?d?d?d?d?d 

In this example two hashes are cracked in (1)one ?d?d?d?d?d?d?d?d search together?
Or there are two (2) different ?d?d?d?d?d?d?d?d searches?


3) What is --force command? when tihs make problems?


Thansk for your replies.
i appreciate your help
Reply
#2
1. only beta supports -m 22000 (https://hashcat.net/beta)
2. the keyspace is only traversed once, if while going to the password candidates one matches, it will be cracked... but you need to keep in mind that salted hashes have the disadvantage that every password must be combined with every "salt", that's the main idea of a salt, to slow it down (think of old rainbow table attacks, which of course are deprecated in most cases, but the idea remains)
3. NEVER. EVER. USE. FORCE. --force always makes problems. --force is used to skip problems/warnings which is very dangerous (only for developers it makes sense sometimes)
Reply