Password & Cracking
bopscrk: Before Outset PaSsword CRacKing is a tool to generate smart and powerful wordlists for targeted attacks.
spraygen: Password list generator for password spraying - prebaked with goodie.
cook: Easily create word's permutation and combination to generate complex wordlists and passwords.
crackpkcs12: A multithreaded program to crack PKCS#12 files (p12 and pfx extensions) by Aestu.
1
crackpkcs12 -d dictionary.txt certificate.pfx
Copied!
hashcat: This is the world's fastest and most advanced password recovery utility, supporting five unique modes of attack for over 300 highly-optimized hashing algorithms. hashcat currently supports CPUs, GPUs, and other hardware accelerators on Linux, Windows, and macOS, and has facilities to help enable distributed password cracking.
1
Linux:
2
hashcat hash.txt -a 0 -m 3200 -w 4 --username -r /usr/share/hashcat/rules/best64.rule wordlist.txt --force
3
4
-r option will permutate the words, e.g:
5
password, password!, password1, password21, password30
6
7
Windows:
8
hashcat64.exe -a 0 --session=2021-04-02 -m 3200 -w 4 --username --force --status --status-timer=60 -p : -O --hwmon-disable -o "C:\Users\xxx\Desktop\cracked.txt" --outfile-format=3 -r "C:\Users\xxx\Desktop\hashcat-5.1.0\rules\nsav2.rule" "C:\Users\xxx\Desktop\hash.txt" "C:\Users\xxx\Desktop\wordlist.txt"
Copied!
pack: PACK (Password Analysis and Cracking Toolkit) is a collection of utilities developed to aid in analysis of password lists in order to enhance password cracking through pattern detection of masks, rules, character-sets and other password characteristics. The toolkit generates valid input files for Hashcat family of password crackers.
1
python statsgen.py rockyou.txt
Copied!
BridgeKeeper: Scrape employee names from search engine LinkedIn profiles. Convert employee names to a specified username format.
1
$ python3 bridgekeeper.py --file names.txt --format {f}{last}@example.com --output example-employees/ --debug
2
3
Name: John Adams Smith
4
{f}{last} > jsmith
5
{f}{m}.{last} > ja.smith
6
{f}{last}[4]@example.com > [email protected]
Copied!

Hashes online

Decrypt MD5, SHA1, MySQL, NTLM, SHA256, SHA512, Wordpress, Bcrypt hashes for free online
CrackStation - Online Password Hash Cracking - MD5, SHA1, Linux, Rainbow Tables, etc.
Hash Analyzer - TunnelsUP
hashcat - advanced password recovery
Weakpass
Hashmob | Password Recovery Community | Resources, Guides & Tutorials
Free Leakcheck By Cybertoolbank.cc
DeHashed — #FreeThePassword
LeakCheck - Find out if your credentials have been compromised
Have I Been Pwned: Check if your email has been compromised in a data breach
Copy link