I am getting ready for a password contest at Defcon that Alex and I and a few other guys from the Hashcat team are going to enter and I decided to install John the Ripper on a Cent OS box in case I needed it for anything. John is in the yum repos however the…
Recently some pretty major advances have come around in the world of GPU based hash cracking. Up untill now there was not much for Linux which would utilize multi GPUs to crack password hashs. This has been changed with the release of Oclhashcat. The release of oclhashcat signifies a signifigant jump in the speed on…
When attempting to compile the CUDA Multiforcer on CentOS Linux I ran into an error because the argtable2 package was not installed on the server. The CUDA Multiforcer application is a security audit tool used to check the strength of MD4, MD5, NTLM, and SHA1 password hashes. The CUDA Multiforcer attempts to brute force one…
With the release of the new Question-Defense online NTLM, MD5 and MD4 cracker I decide to write a quick how to on grabbing the hash’s from a windows system. In order for this to work you need at least one username and logon of a user with admin privileges. I may in the future write…
I have decided to do a few pieces on password auditing over the next few days as sort of a follow up to some of my previous articles on passwords. By writing these , I hope to encourage people to use longer more secure passwords and not to worry so much about the convenience of…