Password & Cracking

bopscrk: Before Outset PaSsword CRacKing is a tool to generate smart and powerful wordlists for targeted attacks.

spraygen: Password list generator for password spraying - prebaked with goodie.

cook: Easily create word's permutation and combination to generate complex wordlists and passwords.

crackpkcs12: A multithreaded program to crack PKCS#12 files (p12 and pfx extensions) by Aestu.

crackpkcs12 -d dictionary.txt certificate.pfx

hashcat: This is the world's fastest and most advanced password recovery utility, supporting five unique modes of attack for over 300 highly-optimized hashing algorithms. hashcat currently supports CPUs, GPUs, and other hardware accelerators on Linux, Windows, and macOS, and has facilities to help enable distributed password cracking.

hashcat hash.txt -a 0 -m 3200 -w 4 --username -r /usr/share/hashcat/rules/best64.rule wordlist.txt --force
-r option will permutate the words, e.g:
password, password!, password1, password21, password30
hashcat64.exe -a 0 --session=2021-04-02 -m 3200 -w 4 --username --force --status --status-timer=60 -p : -O --hwmon-disable -o "C:\Users\xxx\Desktop\cracked.txt" --outfile-format=3 -r "C:\Users\xxx\Desktop\hashcat-5.1.0\rules\nsav2.rule" "C:\Users\xxx\Desktop\hash.txt" "C:\Users\xxx\Desktop\wordlist.txt"

pack: PACK (Password Analysis and Cracking Toolkit) is a collection of utilities developed to aid in analysis of password lists in order to enhance password cracking through pattern detection of masks, rules, character-sets and other password characteristics. The toolkit generates valid input files for Hashcat family of password crackers.

python rockyou.txt

BridgeKeeper: Scrape employee names from search engine LinkedIn profiles. Convert employee names to a specified username format.

$ python3 --file names.txt --format {f}{last} --output example-employees/ --debug
Name: John Adams Smith
{f}{last} > jsmith
{f}{m}.{last} > ja.smith
{f}{last}[4] > [email protected]