The Techno Files
Getting started with Hashcat

Getting started with Hashcat

Password Recovery

Taji Abdullah's photo
Taji Abdullah
·

3 min read

As I delve deeper into my cyber security learning adventure, I’m beginning to pick up and learn new tools.

One of the tools I’ve recently started using is Hashcat. Hashcat is a powerful password recovery tool with abilities that extend beyond the scope of this article, Ill just be touching on basic usage for now. If you want to go more in depth, you can check out the documentation.

Ethical Disclaimer

The info in this article is not intended for nefarious purposes. This is a documented learning journey and any and all illegal activity is frowned upon and highly discouraged. In cyber security, one has to be able to think like a hacker to be able to understand the mindset to best be able to prevent a hacker from reaching their goal.

Basic Usage

For this example we will be using a hash I recently cracked in a CTF(Capture The Flag) exercise to represent the password we want to crack:

CBFDAC6008F9CAB4083784CBD1874F76618D2A97

  1. Open a terminal and store the hash in a file:

     echo 'CBFDAC6008F9CAB4083784CBD1874F76618D2A97' > hash.txt

    If you want to verify this command, enter:

     cat hash.txt

  2. Now we want to find the hashing algorithm of the hash, so we enter this command:

     hashcat --show hash.txt

    This will produce the following output:

    Based on the output, we can determine that the SHA1 algorithm was used to create the hash. We can see 100 next to SHA1, we will be using that in our next command when we specify the hash-mode.

  3. Time to crack it open! We will be using a dictionary attack, this means we will be supplying a list of words for the attack. You Will have to provide you own path to the word list for the command to work for you. If you are using Kali or Parrot, you can use this path:

    /usr/share/wordlists/rockyou.txt

    Run this command replacing the path to rockyou.txt with a path that will work for you:

     hashcat -m 100 -a 0 hash.txt ~/Documents/WordLists/rockyou.txt

    This should provide you with highly detailed hashcat output including the cracked password. Hashcat wont re-crack a password it already cracked, so for me I have to add the —show option to be able to see the results. Like this:

     hashcat -m 100 -a 0 hash.txt ~/Documents/WordLists/rockyou.txt --show

    This would also be how you would see the results of a hash you have previously cracked. This is the output:

    We can see the cracked hash yields

    password123

    This same line can be found in the more detailed output I mentioned earlier when you crack the hash for the first time:

    cbfdac6008f9cab4083784cbd1874f76618d2a97:password123

So that’s how to use Hashcat at the basic level. I’m looking forward to getting to know more about and using it more in depth in the future. Ill try to expand on this topic as I gain more knowledge, thanks for stopping by and reading this and look for more coming soon!

#cybersecurityhashcatpasswordsalgorithms