I have been using Hashcat and oclHashcat a lot in recent weeks but have been limited to primarily using it on Linux servers so I decided to give it a shot on a couple Windows machines. Below I describe how I got oclHashcat operational on Windows 7 Ultimate 32-Bit on a desktop computer with a NVIDIA 9600GT GPU as well as operational on a Windows 7 Ultimate 64-Bit laptop with NVIDIA 9400G M GPU and a NVIDIA G210M GPU. Below is information on what needs to be done to get oclHashcat working on Windows 7.
Recently I have started using Hashcat-gui a lot more to test the strength of various passwords for certain clients. One of the things I wasn’t sure of at first was how to save charsets in the Bruteforce Settings window and while it would be nice if you could have a text file that included various charsets you could select from the drop down menu it is also easy to save your preferred charsets as Hashcat Jobs. Below is information on how to save charsets as Hashcat Jobs as well as recommended charsets you might want to save.
Hashcat is an excellent tool to use or security audits of passwords. I will be doing a series of articles relating to anything from simple brute forcing such as the article to more complex techniques using Hashcat, oclHashcat, and the Hashcat-gui on both Windows and Linux operating systems. The goal is to make people more aware of the technologies available to crack passwords which should allow people to audit their companies passwords for more strict enforcement. This article relates to using the Hashcat-gui on Windows 7 to crack 10 MD5 hashes and assumes that you already have successfully installed Hashcat and the Hashcat-gui.
Pyrit was recently upgraded on a server that I use and when I logged in to run it manually from the CLI I noticed an error. The error, which is explained in more detail below, complains that the libpcap is to old. The server that this pyrit installation is installed on is CentOS 5.4. CentOS 5.X only provides libpcap version 0.9.4-14 as the latest available libpcap version in the yum repositories. At first I searched for a newer libpcap in third party repos though I was unsuccessful so I upgraded libpcap using the source. Below is more information regarding the error and how it was resolved.
Dmitry or Deepmagic Information Gathering Tool is an all in one host information tool included in Backtrack 4’s Information Gathering section. Personally I prefer doing most info gathering using tools built into Linux however it is nice to run a tool like this in the background and come back later if you are multi-tasking. Before getting into the details of Dmitry please see this article relating to a Segmentation Fault that can occur with Dmitry on Backtrack 4.