工具准备
- Hashcat
- John the Ripper
- Strawberry Perl
- 最新显卡驱动(需要使用显卡加速时)
尽量使用新版本的,老版本实测有时有玄学问题
获取hash
对于压缩包需要使用John来获取哈希值
工具位于\john-1.9.0-jumbo-1-win64\run下,运行.pl文件需加上perl
例:
rar2john.exe testfile.rar
testfile.rar:$RAR3$*0*5ba3dd697a8706fa*919ad1d7a1c42bae4a8d462c8537c9cb:0::::testfile.rar
爆破前的准备
选择正确的哈希类型
hashcat --help即可展示所有可操作的hash类型 记好前面的数字,加到参数-m里
- [ Hash modes ] -# | Name | Category======+============================================================+======================================900 | MD4 | Raw Hash0 | MD5 | Raw Hash100 | SHA1 | Raw Hash1300 | SHA2-224 | Raw Hash1400 | SHA2-256 | Raw Hash10800 | SHA2-384 | Raw Hash1700 | SHA2-512 | Raw Hash17300 | SHA3-224 | Raw Hash17400 | SHA3-256 | Raw Hash17500 | SHA3-384 | Raw Hash17600 | SHA3-512 | Raw Hash6000 | RIPEMD-160 | Raw Hash600 | BLAKE2b-512 | Raw Hash11700 | GOST R 34.11-2012 (Streebog) 256-bit, big-endian | Raw Hash11800 | GOST R 34.11-2012 (Streebog) 512-bit, big-endian | Raw Hash6900 | GOST R 34.11-94 | Raw Hash17010 | GPG (AES-128/AES-256 (SHA-1($pass))) | Raw Hash5100 | Half MD5 | Raw Hash17700 | Keccak-224 | Raw Hash17800 | Keccak-256 | Raw Hash17900 | Keccak-384 | Raw Hash18000 | Keccak-512 | Raw Hash6100 | Whirlpool | Raw Hash10100 | SipHash | Raw Hash70 | md5(utf16le($pass)) | Raw Hash170 | sha1(utf16le($pass)) | Raw Hash1470 | sha256(utf16le($pass)) | Raw Hash10870 | sha384(utf16le($pass)) | Raw Hash1770 | sha512(utf16le($pass)) | Raw Hash610 | BLAKE2b-512($pass.$salt) | Raw Hash salted and/or iterated620 | BLAKE2b-512($salt.$pass) | Raw Hash salted and/or iterated10 | md5($pass.$salt) | Raw Hash salted and/or iterated20 | md5($salt.$pass) | Raw Hash salted and/or iterated3800 | md5($salt.$pass.$salt) | Raw Hash salted and/or iterated3710 | md5($salt.md5($pass)) | Raw Hash salted and/or iterated4110 | md5($salt.md5($pass.$salt)) | Raw Hash salted and/or iterated4010 | md5($salt.md5($salt.$pass)) | Raw Hash salted and/or iterated21300 | md5($salt.sha1($salt.$pass)) | Raw Hash salted and/or iterated40 | md5($salt.utf16le($pass)) | Raw Hash salted and/or iterated2600 | md5(md5($pass)) | Raw Hash salted and/or iterated3910 | md5(md5($pass).md5($salt)) | Raw Hash salted and/or iterated3500 | md5(md5(md5($pass))) | Raw Hash salted and/or iterated4400 | md5(sha1($pass)) | Raw Hash salted and/or iterated4410 | md5(sha1($pass).$salt) | Raw Hash salted and/or iterated20900 | md5(sha1($pass).md5($pass).sha1($pass)) | Raw Hash salted and/or iterated21200 | md5(sha1($salt).md5($pass)) | Raw Hash salted and/or iterated4300 | md5(strtoupper(md5($pass))) | Raw Hash salted and/or iterated30 | md5(utf16le($pass).$salt) | Raw Hash salted and/or iterated110 | sha1($pass.$salt) | Raw Hash salted and/or iterated120 | sha1($salt.$pass) | Raw Hash salted and/or iterated4900 | sha1($salt.$pass.$salt) | Raw Hash salted and/or iterated4520 | sha1($salt.sha1($pass)) | Raw Hash salted and/or iterated24300 | sha1($salt.sha1($pass.$salt)) | Raw Hash salted and/or iterated140 | sha1($salt.utf16le($pass)) | Raw Hash salted and/or iterated19300 | sha1($salt1.$pass.$salt2) | Raw Hash salted and/or iterated14400 | sha1(CX) | Raw Hash salted and/or iterated4700 | sha1(md5($pass)) | Raw Hash salted and/or iterated4710 | sha1(md5($pass).$salt) | Raw Hash salted and/or iterated21100 | sha1(md5($pass.$salt)) | Raw Hash salted and/or iterated18500 | sha1(md5(md5($pass))) | Raw Hash salted and/or iterated4500 | sha1(sha1($pass)) | Raw Hash salted and/or iterated4510 | sha1(sha1($pass).$salt) | Raw Hash salted and/or iterated5000 | sha1(sha1($salt.$pass.$salt)) | Raw Hash salted and/or iterated130 | sha1(utf16le($pass).$salt) | Raw Hash salted and/or iterated1410 | sha256($pass.$salt) | Raw Hash salted and/or iterated1420 | sha256($salt.$pass) | Raw Hash salted and/or iterated22300 | sha256($salt.$pass.$salt) | Raw Hash salted and/or iterated20720 | sha256($salt.sha256($pass)) | Raw Hash salted and/or iterated21420 | sha256($salt.sha256_bin($pass)) | Raw Hash salted and/or iterated1440 | sha256($salt.utf16le($pass)) | Raw Hash salted and/or iterated20800 | sha256(md5($pass)) | Raw Hash salted and/or iterated20710 | sha256(sha256($pass).$salt) | Raw Hash salted and/or iterated21400 | sha256(sha256_bin($pass)) | Raw Hash salted and/or iterated1430 | sha256(utf16le($pass).$salt) | Raw Hash salted and/or iterated10810 | sha384($pass.$salt) | Raw Hash salted and/or iterated10820 | sha384($salt.$pass) | Raw Hash salted and/or iterated10840 | sha384($salt.utf16le($pass)) | Raw Hash salted and/or iterated10830 | sha384(utf16le($pass).$salt) | Raw Hash salted and/or iterated1710 | sha512($pass.$salt) | Raw Hash salted and/or iterated1720 | sha512($salt.$pass) | Raw Hash salted and/or iterated1740 | sha512($salt.utf16le($pass)) | Raw Hash salted and/or iterated1730 | sha512(utf16le($pass).$salt) | Raw Hash salted and/or iterated50 | HMAC-MD5 (key = $pass) | Raw Hash authenticated60 | HMAC-MD5 (key = $salt) | Raw Hash authenticated150 | HMAC-SHA1 (key = $pass) | Raw Hash authenticated160 | HMAC-SHA1 (key = $salt) | Raw Hash authenticated1450 | HMAC-SHA256 (key = $pass) | Raw Hash authenticated1460 | HMAC-SHA256 (key = $salt) | Raw Hash authenticated1750 | HMAC-SHA512 (key = $pass) | Raw Hash authenticated1760 | HMAC-SHA512 (key = $salt) | Raw Hash authenticated11750 | HMAC-Streebog-256 (key = $pass), big-endian | Raw Hash authenticated11760 | HMAC-Streebog-256 (key = $salt), big-endian | Raw Hash authenticated11850 | HMAC-Streebog-512 (key = $pass), big-endian | Raw Hash authenticated11860 | HMAC-Streebog-512 (key = $salt), big-endian | Raw Hash authenticated28700 | Amazon AWS4-HMAC-SHA256 | Raw Hash authenticated11500 | CRC32 | Raw Checksum27900 | CRC32C | Raw Checksum28000 | CRC64Jones | Raw Checksum18700 | Java Object hashCode() | Raw Checksum25700 | MurmurHash | Raw Checksum27800 | MurmurHash3 | Raw Checksum14100 | 3DES (PT = $salt, key = $pass) | Raw Cipher, Known-plaintext attack14000 | DES (PT = $salt, key = $pass) | Raw Cipher, Known-plaintext attack26401 | AES-128-ECB NOKDF (PT = $salt, key = $pass) | Raw Cipher, Known-plaintext attack26402 | AES-192-ECB NOKDF (PT = $salt, key = $pass) | Raw Cipher, Known-plaintext attack26403 | AES-256-ECB NOKDF (PT = $salt, key = $pass) | Raw Cipher, Known-plaintext attack15400 | ChaCha20 | Raw Cipher, Known-plaintext attack14500 | Linux Kernel Crypto API (2.4) | Raw Cipher, Known-plaintext attack14900 | Skip32 (PT = $salt, key = $pass) | Raw Cipher, Known-plaintext attack11900 | PBKDF2-HMAC-MD5 | Generic KDF12000 | PBKDF2-HMAC-SHA1 | Generic KDF10900 | PBKDF2-HMAC-SHA256 | Generic KDF12100 | PBKDF2-HMAC-SHA512 | Generic KDF8900 | scrypt | Generic KDF400 | phpass | Generic KDF16100 | TACACS+ | Network Protocol11400 | SIP digest authentication (MD5) | Network Protocol5300 | IKE-PSK MD5 | Network Protocol5400 | IKE-PSK SHA1 | Network Protocol25100 | SNMPv3 HMAC-MD5-96 | Network Protocol25000 | SNMPv3 HMAC-MD5-96/HMAC-SHA1-96 | Network Protocol25200 | SNMPv3 HMAC-SHA1-96 | Network Protocol26700 | SNMPv3 HMAC-SHA224-128 | Network Protocol26800 | SNMPv3 HMAC-SHA256-192 | Network Protocol26900 | SNMPv3 HMAC-SHA384-256 | Network Protocol27300 | SNMPv3 HMAC-SHA512-384 | Network Protocol2500 | WPA-EAPOL-PBKDF2 | Network Protocol2501 | WPA-EAPOL-PMK | Network Protocol22000 | WPA-PBKDF2-PMKID+EAPOL | Network Protocol22001 | WPA-PMK-PMKID+EAPOL | Network Protocol16800 | WPA-PMKID-PBKDF2 | Network Protocol16801 | WPA-PMKID-PMK | Network Protocol7300 | IPMI2 RAKP HMAC-SHA1 | Network Protocol10200 | CRAM-MD5 | Network Protocol16500 | JWT (JSON Web Token) | Network Protocol29200 | Radmin3 | Network Protocol19600 | Kerberos 5, etype 17, TGS-REP | Network Protocol19800 | Kerberos 5, etype 17, Pre-Auth | Network Protocol28800 | Kerberos 5, etype 17, DB | Network Protocol19700 | Kerberos 5, etype 18, TGS-REP | Network Protocol19900 | Kerberos 5, etype 18, Pre-Auth | Network Protocol28900 | Kerberos 5, etype 18, DB | Network Protocol7500 | Kerberos 5, etype 23, AS-REQ Pre-Auth | Network Protocol13100 | Kerberos 5, etype 23, TGS-REP | Network Protocol18200 | Kerberos 5, etype 23, AS-REP | Network Protocol5500 | NetNTLMv1 / NetNTLMv1+ESS | Network Protocol27000 | NetNTLMv1 / NetNTLMv1+ESS (NT) | Network Protocol5600 | NetNTLMv2 | Network Protocol27100 | NetNTLMv2 (NT) | Network Protocol29100 | Flask Session Cookie ($salt.$salt.$pass) | Network Protocol4800 | iSCSI CHAP authentication, MD5(CHAP) | Network Protocol8500 | RACF | Operating System6300 | AIX {smd5} | Operating System6700 | AIX {ssha1} | Operating System6400 | AIX {ssha256} | Operating System6500 | AIX {ssha512} | Operating System3000 | LM | Operating System19000 | QNX /etc/shadow (MD5) | Operating System19100 | QNX /etc/shadow (SHA256) | Operating System19200 | QNX /etc/shadow (SHA512) | Operating System15300 | DPAPI masterkey file v1 (context 1 and 2) | Operating System15310 | DPAPI masterkey file v1 (context 3) | Operating System15900 | DPAPI masterkey file v2 (context 1 and 2) | Operating System15910 | DPAPI masterkey file v2 (context 3) | Operating System7200 | GRUB 2 | Operating System12800 | MS-AzureSync PBKDF2-HMAC-SHA256 | Operating System12400 | BSDi Crypt, Extended DES | Operating System1000 | NTLM | Operating System9900 | Radmin2 | Operating System5800 | Samsung Android Password/PIN | Operating System28100 | Windows Hello PIN/Password | Operating System13800 | Windows Phone 8+ PIN/password | Operating System2410 | Cisco-ASA MD5 | Operating System9200 | Cisco-IOS $8$ (PBKDF2-SHA256) | Operating System9300 | Cisco-IOS $9$ (scrypt) | Operating System5700 | Cisco-IOS type 4 (SHA256) | Operating System2400 | Cisco-PIX MD5 | Operating System8100 | Citrix NetScaler (SHA1) | Operating System22200 | Citrix NetScaler (SHA512) | Operating System1100 | Domain Cached Credentials (DCC), MS Cache | Operating System2100 | Domain Cached Credentials 2 (DCC2), MS Cache 2 | Operating System7000 | FortiGate (FortiOS) | Operating System26300 | FortiGate256 (FortiOS256) | Operating System125 | ArubaOS | Operating System501 | Juniper IVE | Operating System22 | Juniper NetScreen/SSG (ScreenOS) | Operating System15100 | Juniper/NetBSD sha1crypt | Operating System26500 | iPhone passcode (UID key + System Keybag) | Operating System122 | macOS v10.4, macOS v10.5, macOS v10.6 | Operating System1722 | macOS v10.7 | Operating System7100 | macOS v10.8+ (PBKDF2-SHA512) | Operating System3200 | bcrypt $2*$, Blowfish (Unix) | Operating System500 | md5crypt, MD5 (Unix), Cisco-IOS $1$ (MD5) | Operating System1500 | descrypt, DES (Unix), Traditional DES | Operating System29000 | sha1($salt.sha1(utf16le($username).':'.utf16le($pass))) | Operating System7400 | sha256crypt $5$, SHA256 (Unix) | Operating System1800 | sha512crypt $6$, SHA512 (Unix) | Operating System24600 | SQLCipher | Database Server131 | MSSQL (2000) | Database Server132 | MSSQL (2005) | Database Server1731 | MSSQL (2012, 2014) | Database Server24100 | MongoDB ServerKey SCRAM-SHA-1 | Database Server24200 | MongoDB ServerKey SCRAM-SHA-256 | Database Server12 | PostgreSQL | Database Server11100 | PostgreSQL CRAM (MD5) | Database Server28600 | PostgreSQL SCRAM-SHA-256 | Database Server3100 | Oracle H: Type (Oracle 7+) | Database Server112 | Oracle S: Type (Oracle 11+) | Database Server12300 | Oracle T: Type (Oracle 12+) | Database Server7401 | MySQL $A$ (sha256crypt) | Database Server11200 | MySQL CRAM (SHA1) | Database Server200 | MySQL323 | Database Server300 | MySQL4.1/MySQL5 | Database Server8000 | Sybase ASE | Database Server8300 | DNSSEC (NSEC3) | FTP, HTTP, SMTP, LDAP Server25900 | KNX IP Secure - Device Authentication Code | FTP, HTTP, SMTP, LDAP Server16400 | CRAM-MD5 Dovecot | FTP, HTTP, SMTP, LDAP Server1411 | SSHA-256(Base64), LDAP {SSHA256} | FTP, HTTP, SMTP, LDAP Server1711 | SSHA-512(Base64), LDAP {SSHA512} | FTP, HTTP, SMTP, LDAP Server24900 | Dahua Authentication MD5 | FTP, HTTP, SMTP, LDAP Server10901 | RedHat 389-DS LDAP (PBKDF2-HMAC-SHA256) | FTP, HTTP, SMTP, LDAP Server15000 | FileZilla Server >= 0.9.55 | FTP, HTTP, SMTP, LDAP Server12600 | ColdFusion 10+ | FTP, HTTP, SMTP, LDAP Server1600 | Apache $apr1$ MD5, md5apr1, MD5 (APR) | FTP, HTTP, SMTP, LDAP Server141 | Episerver 6.x < .NET 4 | FTP, HTTP, SMTP, LDAP Server1441 | Episerver 6.x >= .NET 4 | FTP, HTTP, SMTP, LDAP Server1421 | hMailServer | FTP, HTTP, SMTP, LDAP Server101 | nsldap, SHA-1(Base64), Netscape LDAP SHA | FTP, HTTP, SMTP, LDAP Server111 | nsldaps, SSHA-1(Base64), Netscape LDAP SSHA | FTP, HTTP, SMTP, LDAP Server7700 | SAP CODVN B (BCODE) | Enterprise Application Software (EAS)7701 | SAP CODVN B (BCODE) from RFC_READ_TABLE | Enterprise Application Software (EAS)7800 | SAP CODVN F/G (PASSCODE) | Enterprise Application Software (EAS)7801 | SAP CODVN F/G (PASSCODE) from RFC_READ_TABLE | Enterprise Application Software (EAS)10300 | SAP CODVN H (PWDSALTEDHASH) iSSHA-1 | Enterprise Application Software (EAS)133 | PeopleSoft | Enterprise Application Software (EAS)13500 | PeopleSoft PS_TOKEN | Enterprise Application Software (EAS)21500 | SolarWinds Orion | Enterprise Application Software (EAS)21501 | SolarWinds Orion v2 | Enterprise Application Software (EAS)24 | SolarWinds Serv-U | Enterprise Application Software (EAS)8600 | Lotus Notes/Domino 5 | Enterprise Application Software (EAS)8700 | Lotus Notes/Domino 6 | Enterprise Application Software (EAS)9100 | Lotus Notes/Domino 8 | Enterprise Application Software (EAS)26200 | OpenEdge Progress Encode | Enterprise Application Software (EAS)20600 | Oracle Transportation Management (SHA256) | Enterprise Application Software (EAS)4711 | Huawei sha1(md5($pass).$salt) | Enterprise Application Software (EAS)20711 | AuthMe sha256 | Enterprise Application Software (EAS)22400 | AES Crypt (SHA256) | Full-Disk Encryption (FDE)27400 | VMware VMX (PBKDF2-HMAC-SHA1 + AES-256-CBC) | Full-Disk Encryption (FDE)14600 | LUKS v1 (legacy) | Full-Disk Encryption (FDE)29541 | LUKS v1 RIPEMD-160 + AES | Full-Disk Encryption (FDE)29542 | LUKS v1 RIPEMD-160 + Serpent | Full-Disk Encryption (FDE)29543 | LUKS v1 RIPEMD-160 + Twofish | Full-Disk Encryption (FDE)29511 | LUKS v1 SHA-1 + AES | Full-Disk Encryption (FDE)29512 | LUKS v1 SHA-1 + Serpent | Full-Disk Encryption (FDE)29513 | LUKS v1 SHA-1 + Twofish | Full-Disk Encryption (FDE)29521 | LUKS v1 SHA-256 + AES | Full-Disk Encryption (FDE)29522 | LUKS v1 SHA-256 + Serpent | Full-Disk Encryption (FDE)29523 | LUKS v1 SHA-256 + Twofish | Full-Disk Encryption (FDE)29531 | LUKS v1 SHA-512 + AES | Full-Disk Encryption (FDE)29532 | LUKS v1 SHA-512 + Serpent | Full-Disk Encryption (FDE)29533 | LUKS v1 SHA-512 + Twofish | Full-Disk Encryption (FDE)13711 | VeraCrypt RIPEMD160 + XTS 512 bit (legacy) | Full-Disk Encryption (FDE)13712 | VeraCrypt RIPEMD160 + XTS 1024 bit (legacy) | Full-Disk Encryption (FDE)13713 | VeraCrypt RIPEMD160 + XTS 1536 bit (legacy) | Full-Disk Encryption (FDE)13741 | VeraCrypt RIPEMD160 + XTS 512 bit + boot-mode (legacy) | Full-Disk Encryption (FDE)13742 | VeraCrypt RIPEMD160 + XTS 1024 bit + boot-mode (legacy) | Full-Disk Encryption (FDE)13743 | VeraCrypt RIPEMD160 + XTS 1536 bit + boot-mode (legacy) | Full-Disk Encryption (FDE)29411 | VeraCrypt RIPEMD160 + XTS 512 bit | Full-Disk Encryption (FDE)29412 | VeraCrypt RIPEMD160 + XTS 1024 bit | Full-Disk Encryption (FDE)29413 | VeraCrypt RIPEMD160 + XTS 1536 bit | Full-Disk Encryption (FDE)29441 | VeraCrypt RIPEMD160 + XTS 512 bit + boot-mode | Full-Disk Encryption (FDE)29442 | VeraCrypt RIPEMD160 + XTS 1024 bit + boot-mode | Full-Disk Encryption (FDE)29443 | VeraCrypt RIPEMD160 + XTS 1536 bit + boot-mode | Full-Disk Encryption (FDE)13751 | VeraCrypt SHA256 + XTS 512 bit (legacy) | Full-Disk Encryption (FDE)13752 | VeraCrypt SHA256 + XTS 1024 bit (legacy) | Full-Disk Encryption (FDE)13753 | VeraCrypt SHA256 + XTS 1536 bit (legacy) | Full-Disk Encryption (FDE)13761 | VeraCrypt SHA256 + XTS 512 bit + boot-mode (legacy) | Full-Disk Encryption (FDE)13762 | VeraCrypt SHA256 + XTS 1024 bit + boot-mode (legacy) | Full-Disk Encryption (FDE)13763 | VeraCrypt SHA256 + XTS 1536 bit + boot-mode (legacy) | Full-Disk Encryption (FDE)29451 | VeraCrypt SHA256 + XTS 512 bit | Full-Disk Encryption (FDE)29452 | VeraCrypt SHA256 + XTS 1024 bit | Full-Disk Encryption (FDE)29453 | VeraCrypt SHA256 + XTS 1536 bit | Full-Disk Encryption (FDE)29461 | VeraCrypt SHA256 + XTS 512 bit + boot-mode | Full-Disk Encryption (FDE)29462 | VeraCrypt SHA256 + XTS 1024 bit + boot-mode | Full-Disk Encryption (FDE)29463 | VeraCrypt SHA256 + XTS 1536 bit + boot-mode | Full-Disk Encryption (FDE)13721 | VeraCrypt SHA512 + XTS 512 bit (legacy) | Full-Disk Encryption (FDE)13722 | VeraCrypt SHA512 + XTS 1024 bit (legacy) | Full-Disk Encryption (FDE)13723 | VeraCrypt SHA512 + XTS 1536 bit (legacy) | Full-Disk Encryption (FDE)29421 | VeraCrypt SHA512 + XTS 512 bit | Full-Disk Encryption (FDE)29422 | VeraCrypt SHA512 + XTS 1024 bit | Full-Disk Encryption (FDE)29423 | VeraCrypt SHA512 + XTS 1536 bit | Full-Disk Encryption (FDE)13771 | VeraCrypt Streebog-512 + XTS 512 bit (legacy) | Full-Disk Encryption (FDE)13772 | VeraCrypt Streebog-512 + XTS 1024 bit (legacy) | Full-Disk Encryption (FDE)13773 | VeraCrypt Streebog-512 + XTS 1536 bit (legacy) | Full-Disk Encryption (FDE)13781 | VeraCrypt Streebog-512 + XTS 512 bit + boot-mode (legacy) | Full-Disk Encryption (FDE)13782 | VeraCrypt Streebog-512 + XTS 1024 bit + boot-mode (legacy) | Full-Disk Encryption (FDE)13783 | VeraCrypt Streebog-512 + XTS 1536 bit + boot-mode (legacy) | Full-Disk Encryption (FDE)29471 | VeraCrypt Streebog-512 + XTS 512 bit | Full-Disk Encryption (FDE)29472 | VeraCrypt Streebog-512 + XTS 1024 bit | Full-Disk Encryption (FDE)29473 | VeraCrypt Streebog-512 + XTS 1536 bit | Full-Disk Encryption (FDE)29481 | VeraCrypt Streebog-512 + XTS 512 bit + boot-mode | Full-Disk Encryption (FDE)29482 | VeraCrypt Streebog-512 + XTS 1024 bit + boot-mode | Full-Disk Encryption (FDE)29483 | VeraCrypt Streebog-512 + XTS 1536 bit + boot-mode | Full-Disk Encryption (FDE)13731 | VeraCrypt Whirlpool + XTS 512 bit (legacy) | Full-Disk Encryption (FDE)13732 | VeraCrypt Whirlpool + XTS 1024 bit (legacy) | Full-Disk Encryption (FDE)13733 | VeraCrypt Whirlpool + XTS 1536 bit (legacy) | Full-Disk Encryption (FDE)29431 | VeraCrypt Whirlpool + XTS 512 bit | Full-Disk Encryption (FDE)29432 | VeraCrypt Whirlpool + XTS 1024 bit | Full-Disk Encryption (FDE)29433 | VeraCrypt Whirlpool + XTS 1536 bit | Full-Disk Encryption (FDE)23900 | BestCrypt v3 Volume Encryption | Full-Disk Encryption (FDE)16700 | FileVault 2 | Full-Disk Encryption (FDE)27500 | VirtualBox (PBKDF2-HMAC-SHA256 & AES-128-XTS) | Full-Disk Encryption (FDE)27600 | VirtualBox (PBKDF2-HMAC-SHA256 & AES-256-XTS) | Full-Disk Encryption (FDE)20011 | DiskCryptor SHA512 + XTS 512 bit | Full-Disk Encryption (FDE)20012 | DiskCryptor SHA512 + XTS 1024 bit | Full-Disk Encryption (FDE)20013 | DiskCryptor SHA512 + XTS 1536 bit | Full-Disk Encryption (FDE)22100 | BitLocker | Full-Disk Encryption (FDE)12900 | Android FDE (Samsung DEK) | Full-Disk Encryption (FDE)8800 | Android FDE <= 4.3 | Full-Disk Encryption (FDE)18300 | Apple File System (APFS) | Full-Disk Encryption (FDE)6211 | TrueCrypt RIPEMD160 + XTS 512 bit (legacy) | Full-Disk Encryption (FDE)6212 | TrueCrypt RIPEMD160 + XTS 1024 bit (legacy) | Full-Disk Encryption (FDE)6213 | TrueCrypt RIPEMD160 + XTS 1536 bit (legacy) | Full-Disk Encryption (FDE)6241 | TrueCrypt RIPEMD160 + XTS 512 bit + boot-mode (legacy) | Full-Disk Encryption (FDE)6242 | TrueCrypt RIPEMD160 + XTS 1024 bit + boot-mode (legacy) | Full-Disk Encryption (FDE)6243 | TrueCrypt RIPEMD160 + XTS 1536 bit + boot-mode (legacy) | Full-Disk Encryption (FDE)29311 | TrueCrypt RIPEMD160 + XTS 512 bit | Full-Disk Encryption (FDE)29312 | TrueCrypt RIPEMD160 + XTS 1024 bit | Full-Disk Encryption (FDE)29313 | TrueCrypt RIPEMD160 + XTS 1536 bit | Full-Disk Encryption (FDE)29341 | TrueCrypt RIPEMD160 + XTS 512 bit + boot-mode | Full-Disk Encryption (FDE)29342 | TrueCrypt RIPEMD160 + XTS 1024 bit + boot-mode | Full-Disk Encryption (FDE)29343 | TrueCrypt RIPEMD160 + XTS 1536 bit + boot-mode | Full-Disk Encryption (FDE)6221 | TrueCrypt SHA512 + XTS 512 bit (legacy) | Full-Disk Encryption (FDE)6222 | TrueCrypt SHA512 + XTS 1024 bit (legacy) | Full-Disk Encryption (FDE)6223 | TrueCrypt SHA512 + XTS 1536 bit (legacy) | Full-Disk Encryption (FDE)29321 | TrueCrypt SHA512 + XTS 512 bit | Full-Disk Encryption (FDE)29322 | TrueCrypt SHA512 + XTS 1024 bit | Full-Disk Encryption (FDE)29323 | TrueCrypt SHA512 + XTS 1536 bit | Full-Disk Encryption (FDE)6231 | TrueCrypt Whirlpool + XTS 512 bit (legacy) | Full-Disk Encryption (FDE)6232 | TrueCrypt Whirlpool + XTS 1024 bit (legacy) | Full-Disk Encryption (FDE)6233 | TrueCrypt Whirlpool + XTS 1536 bit (legacy) | Full-Disk Encryption (FDE)29331 | TrueCrypt Whirlpool + XTS 512 bit | Full-Disk Encryption (FDE)29332 | TrueCrypt Whirlpool + XTS 1024 bit | Full-Disk Encryption (FDE)29333 | TrueCrypt Whirlpool + XTS 1536 bit | Full-Disk Encryption (FDE)12200 | eCryptfs | Full-Disk Encryption (FDE)10400 | PDF 1.1 - 1.3 (Acrobat 2 - 4) | Document10410 | PDF 1.1 - 1.3 (Acrobat 2 - 4), collider #1 | Document10420 | PDF 1.1 - 1.3 (Acrobat 2 - 4), collider #2 | Document10500 | PDF 1.4 - 1.6 (Acrobat 5 - 8) | Document25400 | PDF 1.4 - 1.6 (Acrobat 5 - 8) - user and owner pass | Document10600 | PDF 1.7 Level 3 (Acrobat 9) | Document10700 | PDF 1.7 Level 8 (Acrobat 10 - 11) | Document9400 | MS Office 2007 | Document9500 | MS Office 2010 | Document9600 | MS Office 2013 | Document25300 | MS Office 2016 - SheetProtection | Document9700 | MS Office <= 2003 $0/$1, MD5 + RC4 | Document9710 | MS Office <= 2003 $0/$1, MD5 + RC4, collider #1 | Document9720 | MS Office <= 2003 $0/$1, MD5 + RC4, collider #2 | Document9810 | MS Office <= 2003 $3, SHA1 + RC4, collider #1 | Document9820 | MS Office <= 2003 $3, SHA1 + RC4, collider #2 | Document9800 | MS Office <= 2003 $3/$4, SHA1 + RC4 | Document18400 | Open Document Format (ODF) 1.2 (SHA-256, AES) | Document18600 | Open Document Format (ODF) 1.1 (SHA-1, Blowfish) | Document16200 | Apple Secure Notes | Document23300 | Apple iWork | Document6600 | 1Password, agilekeychain | Password Manager8200 | 1Password, cloudkeychain | Password Manager9000 | Password Safe v2 | Password Manager5200 | Password Safe v3 | Password Manager6800 | LastPass + LastPass sniffed | Password Manager13400 | KeePass 1 (AES/Twofish) and KeePass 2 (AES) | Password Manager29700 | KeePass 1 (AES/Twofish) and KeePass 2 (AES) - keyfile only mode | Password Manager23400 | Bitwarden | Password Manager16900 | Ansible Vault | Password Manager26000 | Mozilla key3.db | Password Manager26100 | Mozilla key4.db | Password Manager23100 | Apple Keychain | Password Manager11600 | 7-Zip | Archive12500 | RAR3-hp | Archive23800 | RAR3-p (Compressed) | Archive23700 | RAR3-p (Uncompressed) | Archive13000 | RAR5 | Archive17220 | PKZIP (Compressed Multi-File) | Archive17200 | PKZIP (Compressed) | Archive17225 | PKZIP (Mixed Multi-File) | Archive17230 | PKZIP (Mixed Multi-File Checksum-Only) | Archive17210 | PKZIP (Uncompressed) | Archive20500 | PKZIP Master Key | Archive20510 | PKZIP Master Key (6 byte optimization) | Archive23001 | SecureZIP AES-128 | Archive23002 | SecureZIP AES-192 | Archive23003 | SecureZIP AES-256 | Archive13600 | WinZip | Archive18900 | Android Backup | Archive24700 | Stuffit5 | Archive13200 | AxCrypt 1 | Archive13300 | AxCrypt 1 in-memory SHA1 | Archive23500 | AxCrypt 2 AES-128 | Archive23600 | AxCrypt 2 AES-256 | Archive14700 | iTunes backup < 10.0 | Archive14800 | iTunes backup >= 10.0 | Archive8400 | WBB3 (Woltlab Burning Board) | Forums, CMS, E-Commerce2612 | PHPS | Forums, CMS, E-Commerce121 | SMF (Simple Machines Forum) > v1.1 | Forums, CMS, E-Commerce3711 | MediaWiki B type | Forums, CMS, E-Commerce4521 | Redmine | Forums, CMS, E-Commerce24800 | Umbraco HMAC-SHA1 | Forums, CMS, E-Commerce11 | Joomla < 2.5.18 | Forums, CMS, E-Commerce13900 | OpenCart | Forums, CMS, E-Commerce11000 | PrestaShop | Forums, CMS, E-Commerce16000 | Tripcode | Forums, CMS, E-Commerce7900 | Drupal7 | Forums, CMS, E-Commerce4522 | PunBB | Forums, CMS, E-Commerce2811 | MyBB 1.2+, IPB2+ (Invision Power Board) | Forums, CMS, E-Commerce2611 | vBulletin < v3.8.5 | Forums, CMS, E-Commerce2711 | vBulletin >= v3.8.5 | Forums, CMS, E-Commerce25600 | bcrypt(md5($pass)) / bcryptmd5 | Forums, CMS, E-Commerce25800 | bcrypt(sha1($pass)) / bcryptsha1 | Forums, CMS, E-Commerce28400 | bcrypt(sha512($pass)) / bcryptsha512 | Forums, CMS, E-Commerce21 | osCommerce, xt:Commerce | Forums, CMS, E-Commerce18100 | TOTP (HMAC-SHA1) | One-Time Password2000 | STDOUT | Plaintext99999 | Plaintext | Plaintext21600 | Web2py pbkdf2-sha512 | Framework10000 | Django (PBKDF2-SHA256) | Framework124 | Django (SHA-1) | Framework12001 | Atlassian (PBKDF2-HMAC-SHA1) | Framework19500 | Ruby on Rails Restful-Authentication | Framework27200 | Ruby on Rails Restful Auth (one round, no sitekey) | Framework30000 | Python Werkzeug MD5 (HMAC-MD5 (key = $salt)) | Framework30120 | Python Werkzeug SHA256 (HMAC-SHA256 (key = $salt)) | Framework20200 | Python passlib pbkdf2-sha512 | Framework20300 | Python passlib pbkdf2-sha256 | Framework20400 | Python passlib pbkdf2-sha1 | Framework24410 | PKCS#8 Private Keys (PBKDF2-HMAC-SHA1 + 3DES/AES) | Private Key24420 | PKCS#8 Private Keys (PBKDF2-HMAC-SHA256 + 3DES/AES) | Private Key15500 | JKS Java Key Store Private Keys (SHA1) | Private Key22911 | RSA/DSA/EC/OpenSSH Private Keys ($0$) | Private Key22921 | RSA/DSA/EC/OpenSSH Private Keys ($6$) | Private Key22931 | RSA/DSA/EC/OpenSSH Private Keys ($1, $3$) | Private Key22941 | RSA/DSA/EC/OpenSSH Private Keys ($4$) | Private Key22951 | RSA/DSA/EC/OpenSSH Private Keys ($5$) | Private Key23200 | XMPP SCRAM PBKDF2-SHA1 | Instant Messaging Service28300 | Teamspeak 3 (channel hash) | Instant Messaging Service22600 | Telegram Desktop < v2.1.14 (PBKDF2-HMAC-SHA1) | Instant Messaging Service24500 | Telegram Desktop >= v2.1.14 (PBKDF2-HMAC-SHA512) | Instant Messaging Service22301 | Telegram Mobile App Passcode (SHA256) | Instant Messaging Service23 | Skype | Instant Messaging Service29600 | Terra Station Wallet (AES256-CBC(PBKDF2($pass))) | Cryptocurrency Wallet26600 | MetaMask Wallet | Cryptocurrency Wallet21000 | BitShares v0.x - sha512(sha512_bin(pass)) | Cryptocurrency Wallet28501 | Bitcoin WIF private key (P2PKH), compressed | Cryptocurrency Wallet28502 | Bitcoin WIF private key (P2PKH), uncompressed | Cryptocurrency Wallet28503 | Bitcoin WIF private key (P2WPKH, Bech32), compressed | Cryptocurrency Wallet28504 | Bitcoin WIF private key (P2WPKH, Bech32), uncompressed | Cryptocurrency Wallet28505 | Bitcoin WIF private key (P2SH(P2WPKH)), compressed | Cryptocurrency Wallet28506 | Bitcoin WIF private key (P2SH(P2WPKH)), uncompressed | Cryptocurrency Wallet11300 | Bitcoin/Litecoin wallet.dat | Cryptocurrency Wallet16600 | Electrum Wallet (Salt-Type 1-3) | Cryptocurrency Wallet21700 | Electrum Wallet (Salt-Type 4) | Cryptocurrency Wallet21800 | Electrum Wallet (Salt-Type 5) | Cryptocurrency Wallet12700 | Blockchain, My Wallet | Cryptocurrency Wallet15200 | Blockchain, My Wallet, V2 | Cryptocurrency Wallet18800 | Blockchain, My Wallet, Second Password (SHA256) | Cryptocurrency Wallet25500 | Stargazer Stellar Wallet XLM | Cryptocurrency Wallet16300 | Ethereum Pre-Sale Wallet, PBKDF2-HMAC-SHA256 | Cryptocurrency Wallet15600 | Ethereum Wallet, PBKDF2-HMAC-SHA256 | Cryptocurrency Wallet15700 | Ethereum Wallet, SCRYPT | Cryptocurrency Wallet22500 | MultiBit Classic .key (MD5) | Cryptocurrency Wallet27700 | MultiBit Classic .wallet (scrypt) | Cryptocurrency Wallet22700 | MultiBit HD (scrypt) | Cryptocurrency Wallet28200 | Exodus Desktop Wallet (scrypt) | Cryptocurrency Wallet
选择破解模式
参数使用 -a
0 Straight(字典破解)
1 Combination(组合破解)
3 Brute-force(掩码暴力破解)
6 Hybrid dict + mask(混合字典+掩码)
7 Hybrid mask + dict(混合掩码+字典)
使用掩码暴力破解
设置掩码
每个掩码代表一位密码
常用掩码
?l = abcdefghijklmnopqrstuvwxyz
?u = ABCDEFGHIJKLMNOPQRSTUVWXYZ
?d = 0123456789
?s = !"#$%&'()*+,-./:;<=>?@[\]^_`{|}~
?a = ?l?u?d?s
如果需要字母加数字的掩码就需要自定义
--custom-charset1 [chars]
密码只包含123和abc
--custom-charset1 123abc
数字加小写字母
--custom-charset1 ?l?d
使用:?1?1?1?1
设置爆破长度
默认是爆破掩码长度的密码,如果不确定密码位数可以用下面的参数
--increment --increment-min 6 --increment-max 8
使用掩码破解
hashcat.exe -m 12500 -a3 R A R 3 RAR3 RAR305ba3dd697a8706fa*919ad1d7a1c42bae4a8d462c8537c9cb ?d?d?d?d
使用字典
单哈希列表搭配多个字典
hashcat64.bin -m 0 -a 0 hash_list.txt dict1.txt dict2.txt dict3.txt
选择正确的GPU
有的时候会默认选择核显,需要使用 -d来指定gpu
OpenCL API (OpenCL 3.0 CUDA 11.7.102) - Platform #1 [NVIDIA Corporation]
========================================================================
* Device #1: NVIDIA GeForce GTX 1660 Ti, 5440/6143 MB (1535 MB allocatable), 24MCUOpenCL API (OpenCL 2.1 ) - Platform #2 [Intel(R) Corporation]
=============================================================
* Device #2: Intel(R) UHD Graphics 630, 6464/13047 MB (2047 MB allocatable), 24MCU
运行hashcat --benchmark在任务管理器查看是否占用正确的显卡,N卡需要选择CUDA图表才能看见占用
附使用手册
https://hashcat.net/wiki/doku.php?id=hashcat
Options
hashcat (v6.2.6) starting in help modeUsage: hashcat [options]... hash|hashfile|hccapxfile [dictionary|mask|directory]...- [ Options ] -Options Short / Long | Type | Description | Example
================================+======+======================================================+=======================-m, --hash-type | Num | Hash-type, references below (otherwise autodetect) | -m 1000-a, --attack-mode | Num | Attack-mode, see references below | -a 3-V, --version | | Print version |-h, --help | | Print help |--quiet | | Suppress output |--hex-charset | | Assume charset is given in hex |--hex-salt | | Assume salt is given in hex |--hex-wordlist | | Assume words in wordlist are given in hex |--force | | Ignore warnings |--deprecated-check-disable | | Enable deprecated plugins |--status | | Enable automatic update of the status screen |--status-json | | Enable JSON format for status output |--status-timer | Num | Sets seconds between status screen updates to X | --status-timer=1--stdin-timeout-abort | Num | Abort if there is no input from stdin for X seconds | --stdin-timeout-abort=300--machine-readable | | Display the status view in a machine-readable format |--keep-guessing | | Keep guessing the hash after it has been cracked |--self-test-disable | | Disable self-test functionality on startup |--loopback | | Add new plains to induct directory |--markov-hcstat2 | File | Specify hcstat2 file to use | --markov-hcstat2=my.hcstat2--markov-disable | | Disables markov-chains, emulates classic brute-force |--markov-classic | | Enables classic markov-chains, no per-position |--markov-inverse | | Enables inverse markov-chains, no per-position |-t, --markov-threshold | Num | Threshold X when to stop accepting new markov-chains | -t 50--runtime | Num | Abort session after X seconds of runtime | --runtime=10--session | Str | Define specific session name | --session=mysession--restore | | Restore session from --session |--restore-disable | | Do not write restore file |--restore-file-path | File | Specific path to restore file | --restore-file-path=x.restore-o, --outfile | File | Define outfile for recovered hash | -o outfile.txt--outfile-format | Str | Outfile format to use, separated with commas | --outfile-format=1,3--outfile-autohex-disable | | Disable the use of $HEX[] in output plains |--outfile-check-timer | Num | Sets seconds between outfile checks to X | --outfile-check-timer=30--wordlist-autohex-disable | | Disable the conversion of $HEX[] from the wordlist |-p, --separator | Char | Separator char for hashlists and outfile | -p :--stdout | | Do not crack a hash, instead print candidates only |--show | | Compare hashlist with potfile; show cracked hashes |--left | | Compare hashlist with potfile; show uncracked hashes |--username | | Enable ignoring of usernames in hashfile |--remove | | Enable removal of hashes once they are cracked |--remove-timer | Num | Update input hash file each X seconds | --remove-timer=30--potfile-disable | | Do not write potfile |--potfile-path | File | Specific path to potfile | --potfile-path=my.pot--encoding-from | Code | Force internal wordlist encoding from X | --encoding-from=iso-8859-15--encoding-to | Code | Force internal wordlist encoding to X | --encoding-to=utf-32le--debug-mode | Num | Defines the debug mode (hybrid only by using rules) | --debug-mode=4--debug-file | File | Output file for debugging rules | --debug-file=good.log--induction-dir | Dir | Specify the induction directory to use for loopback | --induction=inducts--outfile-check-dir | Dir | Specify the outfile directory to monitor for plains | --outfile-check-dir=x--logfile-disable | | Disable the logfile |--hccapx-message-pair | Num | Load only message pairs from hccapx matching X | --hccapx-message-pair=2--nonce-error-corrections | Num | The BF size range to replace AP's nonce last bytes | --nonce-error-corrections=16--keyboard-layout-mapping | File | Keyboard layout mapping table for special hash-modes | --keyb=german.hckmap--truecrypt-keyfiles | File | Keyfiles to use, separated with commas | --truecrypt-keyf=x.png--veracrypt-keyfiles | File | Keyfiles to use, separated with commas | --veracrypt-keyf=x.txt--veracrypt-pim-start | Num | VeraCrypt personal iterations multiplier start | --veracrypt-pim-start=450--veracrypt-pim-stop | Num | VeraCrypt personal iterations multiplier stop | --veracrypt-pim-stop=500-b, --benchmark | | Run benchmark of selected hash-modes |--benchmark-all | | Run benchmark of all hash-modes (requires -b) |--speed-only | | Return expected speed of the attack, then quit |--progress-only | | Return ideal progress step size and time to process |-c, --segment-size | Num | Sets size in MB to cache from the wordfile to X | -c 32--bitmap-min | Num | Sets minimum bits allowed for bitmaps to X | --bitmap-min=24--bitmap-max | Num | Sets maximum bits allowed for bitmaps to X | --bitmap-max=24--cpu-affinity | Str | Locks to CPU devices, separated with commas | --cpu-affinity=1,2,3--hook-threads | Num | Sets number of threads for a hook (per compute unit) | --hook-threads=8--hash-info | | Show information for each hash-mode |--example-hashes | | Alias of --hash-info |--backend-ignore-cuda | | Do not try to open CUDA interface on startup |--backend-ignore-hip | | Do not try to open HIP interface on startup |--backend-ignore-metal | | Do not try to open Metal interface on startup |--backend-ignore-opencl | | Do not try to open OpenCL interface on startup |-I, --backend-info | | Show system/evironment/backend API info | -I or -II-d, --backend-devices | Str | Backend devices to use, separated with commas | -d 1-D, --opencl-device-types | Str | OpenCL device-types to use, separated with commas | -D 1-O, --optimized-kernel-enable | | Enable optimized kernels (limits password length) |-M, --multiply-accel-disable | | Disable multiply kernel-accel with processor count |-w, --workload-profile | Num | Enable a specific workload profile, see pool below | -w 3-n, --kernel-accel | Num | Manual workload tuning, set outerloop step size to X | -n 64-u, --kernel-loops | Num | Manual workload tuning, set innerloop step size to X | -u 256-T, --kernel-threads | Num | Manual workload tuning, set thread count to X | -T 64--backend-vector-width | Num | Manually override backend vector-width to X | --backend-vector=4--spin-damp | Num | Use CPU for device synchronization, in percent | --spin-damp=10--hwmon-disable | | Disable temperature and fanspeed reads and triggers |--hwmon-temp-abort | Num | Abort if temperature reaches X degrees Celsius | --hwmon-temp-abort=100--scrypt-tmto | Num | Manually override TMTO value for scrypt to X | --scrypt-tmto=3-s, --skip | Num | Skip X words from the start | -s 1000000-l, --limit | Num | Limit X words from the start + skipped words | -l 1000000--keyspace | | Show keyspace base:mod values and quit |-j, --rule-left | Rule | Single rule applied to each word from left wordlist | -j 'c'-k, --rule-right | Rule | Single rule applied to each word from right wordlist | -k '^-'-r, --rules-file | File | Multiple rules applied to each word from wordlists | -r rules/best64.rule-g, --generate-rules | Num | Generate X random rules | -g 10000--generate-rules-func-min | Num | Force min X functions per rule |--generate-rules-func-max | Num | Force max X functions per rule |--generate-rules-func-sel | Str | Pool of rule operators valid for random rule engine | --generate-rules-func-sel=ioTlc--generate-rules-seed | Num | Force RNG seed set to X |-1, --custom-charset1 | CS | User-defined charset ?1 | -1 ?l?d?u-2, --custom-charset2 | CS | User-defined charset ?2 | -2 ?l?d?s-3, --custom-charset3 | CS | User-defined charset ?3 |-4, --custom-charset4 | CS | User-defined charset ?4 |--identify | | Shows all supported algorithms for input hashes | --identify my.hash-i, --increment | | Enable mask increment mode |--increment-min | Num | Start mask incrementing at X | --increment-min=4--increment-max | Num | Stop mask incrementing at X | --increment-max=8-S, --slow-candidates | | Enable slower (but advanced) candidate generators |--brain-server | | Enable brain server |--brain-server-timer | Num | Update the brain server dump each X seconds (min:60) | --brain-server-timer=300-z, --brain-client | | Enable brain client, activates -S |--brain-client-features | Num | Define brain client features, see below | --brain-client-features=3--brain-host | Str | Brain server host (IP or domain) | --brain-host=127.0.0.1--brain-port | Port | Brain server port | --brain-port=13743--brain-password | Str | Brain server authentication password | --brain-password=bZfhCvGUSjRq--brain-session | Hex | Overrides automatically calculated brain session | --brain-session=0x2ae611db--brain-session-whitelist | Hex | Allow given sessions only, separated with commas | --brain-session-whitelist=0x2ae611db- [ Hash modes ] -# | Name | Category======+============================================================+======================================900 | MD4 | Raw Hash0 | MD5 | Raw Hash100 | SHA1 | Raw Hash1300 | SHA2-224 | Raw Hash1400 | SHA2-256 | Raw Hash10800 | SHA2-384 | Raw Hash1700 | SHA2-512 | Raw Hash17300 | SHA3-224 | Raw Hash17400 | SHA3-256 | Raw Hash17500 | SHA3-384 | Raw Hash17600 | SHA3-512 | Raw Hash6000 | RIPEMD-160 | Raw Hash600 | BLAKE2b-512 | Raw Hash11700 | GOST R 34.11-2012 (Streebog) 256-bit, big-endian | Raw Hash11800 | GOST R 34.11-2012 (Streebog) 512-bit, big-endian | Raw Hash6900 | GOST R 34.11-94 | Raw Hash17010 | GPG (AES-128/AES-256 (SHA-1($pass))) | Raw Hash5100 | Half MD5 | Raw Hash17700 | Keccak-224 | Raw Hash17800 | Keccak-256 | Raw Hash17900 | Keccak-384 | Raw Hash18000 | Keccak-512 | Raw Hash6100 | Whirlpool | Raw Hash10100 | SipHash | Raw Hash70 | md5(utf16le($pass)) | Raw Hash170 | sha1(utf16le($pass)) | Raw Hash1470 | sha256(utf16le($pass)) | Raw Hash10870 | sha384(utf16le($pass)) | Raw Hash1770 | sha512(utf16le($pass)) | Raw Hash610 | BLAKE2b-512($pass.$salt) | Raw Hash salted and/or iterated620 | BLAKE2b-512($salt.$pass) | Raw Hash salted and/or iterated10 | md5($pass.$salt) | Raw Hash salted and/or iterated20 | md5($salt.$pass) | Raw Hash salted and/or iterated3800 | md5($salt.$pass.$salt) | Raw Hash salted and/or iterated3710 | md5($salt.md5($pass)) | Raw Hash salted and/or iterated4110 | md5($salt.md5($pass.$salt)) | Raw Hash salted and/or iterated4010 | md5($salt.md5($salt.$pass)) | Raw Hash salted and/or iterated21300 | md5($salt.sha1($salt.$pass)) | Raw Hash salted and/or iterated40 | md5($salt.utf16le($pass)) | Raw Hash salted and/or iterated2600 | md5(md5($pass)) | Raw Hash salted and/or iterated3910 | md5(md5($pass).md5($salt)) | Raw Hash salted and/or iterated3500 | md5(md5(md5($pass))) | Raw Hash salted and/or iterated4400 | md5(sha1($pass)) | Raw Hash salted and/or iterated4410 | md5(sha1($pass).$salt) | Raw Hash salted and/or iterated20900 | md5(sha1($pass).md5($pass).sha1($pass)) | Raw Hash salted and/or iterated21200 | md5(sha1($salt).md5($pass)) | Raw Hash salted and/or iterated4300 | md5(strtoupper(md5($pass))) | Raw Hash salted and/or iterated30 | md5(utf16le($pass).$salt) | Raw Hash salted and/or iterated110 | sha1($pass.$salt) | Raw Hash salted and/or iterated120 | sha1($salt.$pass) | Raw Hash salted and/or iterated4900 | sha1($salt.$pass.$salt) | Raw Hash salted and/or iterated4520 | sha1($salt.sha1($pass)) | Raw Hash salted and/or iterated24300 | sha1($salt.sha1($pass.$salt)) | Raw Hash salted and/or iterated140 | sha1($salt.utf16le($pass)) | Raw Hash salted and/or iterated19300 | sha1($salt1.$pass.$salt2) | Raw Hash salted and/or iterated14400 | sha1(CX) | Raw Hash salted and/or iterated4700 | sha1(md5($pass)) | Raw Hash salted and/or iterated4710 | sha1(md5($pass).$salt) | Raw Hash salted and/or iterated21100 | sha1(md5($pass.$salt)) | Raw Hash salted and/or iterated18500 | sha1(md5(md5($pass))) | Raw Hash salted and/or iterated4500 | sha1(sha1($pass)) | Raw Hash salted and/or iterated4510 | sha1(sha1($pass).$salt) | Raw Hash salted and/or iterated5000 | sha1(sha1($salt.$pass.$salt)) | Raw Hash salted and/or iterated130 | sha1(utf16le($pass).$salt) | Raw Hash salted and/or iterated1410 | sha256($pass.$salt) | Raw Hash salted and/or iterated1420 | sha256($salt.$pass) | Raw Hash salted and/or iterated22300 | sha256($salt.$pass.$salt) | Raw Hash salted and/or iterated20720 | sha256($salt.sha256($pass)) | Raw Hash salted and/or iterated21420 | sha256($salt.sha256_bin($pass)) | Raw Hash salted and/or iterated1440 | sha256($salt.utf16le($pass)) | Raw Hash salted and/or iterated20800 | sha256(md5($pass)) | Raw Hash salted and/or iterated20710 | sha256(sha256($pass).$salt) | Raw Hash salted and/or iterated21400 | sha256(sha256_bin($pass)) | Raw Hash salted and/or iterated1430 | sha256(utf16le($pass).$salt) | Raw Hash salted and/or iterated10810 | sha384($pass.$salt) | Raw Hash salted and/or iterated10820 | sha384($salt.$pass) | Raw Hash salted and/or iterated10840 | sha384($salt.utf16le($pass)) | Raw Hash salted and/or iterated10830 | sha384(utf16le($pass).$salt) | Raw Hash salted and/or iterated1710 | sha512($pass.$salt) | Raw Hash salted and/or iterated1720 | sha512($salt.$pass) | Raw Hash salted and/or iterated1740 | sha512($salt.utf16le($pass)) | Raw Hash salted and/or iterated1730 | sha512(utf16le($pass).$salt) | Raw Hash salted and/or iterated50 | HMAC-MD5 (key = $pass) | Raw Hash authenticated60 | HMAC-MD5 (key = $salt) | Raw Hash authenticated150 | HMAC-SHA1 (key = $pass) | Raw Hash authenticated160 | HMAC-SHA1 (key = $salt) | Raw Hash authenticated1450 | HMAC-SHA256 (key = $pass) | Raw Hash authenticated1460 | HMAC-SHA256 (key = $salt) | Raw Hash authenticated1750 | HMAC-SHA512 (key = $pass) | Raw Hash authenticated1760 | HMAC-SHA512 (key = $salt) | Raw Hash authenticated11750 | HMAC-Streebog-256 (key = $pass), big-endian | Raw Hash authenticated11760 | HMAC-Streebog-256 (key = $salt), big-endian | Raw Hash authenticated11850 | HMAC-Streebog-512 (key = $pass), big-endian | Raw Hash authenticated11860 | HMAC-Streebog-512 (key = $salt), big-endian | Raw Hash authenticated28700 | Amazon AWS4-HMAC-SHA256 | Raw Hash authenticated11500 | CRC32 | Raw Checksum27900 | CRC32C | Raw Checksum28000 | CRC64Jones | Raw Checksum18700 | Java Object hashCode() | Raw Checksum25700 | MurmurHash | Raw Checksum27800 | MurmurHash3 | Raw Checksum14100 | 3DES (PT = $salt, key = $pass) | Raw Cipher, Known-plaintext attack14000 | DES (PT = $salt, key = $pass) | Raw Cipher, Known-plaintext attack26401 | AES-128-ECB NOKDF (PT = $salt, key = $pass) | Raw Cipher, Known-plaintext attack26402 | AES-192-ECB NOKDF (PT = $salt, key = $pass) | Raw Cipher, Known-plaintext attack26403 | AES-256-ECB NOKDF (PT = $salt, key = $pass) | Raw Cipher, Known-plaintext attack15400 | ChaCha20 | Raw Cipher, Known-plaintext attack14500 | Linux Kernel Crypto API (2.4) | Raw Cipher, Known-plaintext attack14900 | Skip32 (PT = $salt, key = $pass) | Raw Cipher, Known-plaintext attack11900 | PBKDF2-HMAC-MD5 | Generic KDF12000 | PBKDF2-HMAC-SHA1 | Generic KDF10900 | PBKDF2-HMAC-SHA256 | Generic KDF12100 | PBKDF2-HMAC-SHA512 | Generic KDF8900 | scrypt | Generic KDF400 | phpass | Generic KDF16100 | TACACS+ | Network Protocol11400 | SIP digest authentication (MD5) | Network Protocol5300 | IKE-PSK MD5 | Network Protocol5400 | IKE-PSK SHA1 | Network Protocol25100 | SNMPv3 HMAC-MD5-96 | Network Protocol25000 | SNMPv3 HMAC-MD5-96/HMAC-SHA1-96 | Network Protocol25200 | SNMPv3 HMAC-SHA1-96 | Network Protocol26700 | SNMPv3 HMAC-SHA224-128 | Network Protocol26800 | SNMPv3 HMAC-SHA256-192 | Network Protocol26900 | SNMPv3 HMAC-SHA384-256 | Network Protocol27300 | SNMPv3 HMAC-SHA512-384 | Network Protocol2500 | WPA-EAPOL-PBKDF2 | Network Protocol2501 | WPA-EAPOL-PMK | Network Protocol22000 | WPA-PBKDF2-PMKID+EAPOL | Network Protocol22001 | WPA-PMK-PMKID+EAPOL | Network Protocol16800 | WPA-PMKID-PBKDF2 | Network Protocol16801 | WPA-PMKID-PMK | Network Protocol7300 | IPMI2 RAKP HMAC-SHA1 | Network Protocol10200 | CRAM-MD5 | Network Protocol16500 | JWT (JSON Web Token) | Network Protocol29200 | Radmin3 | Network Protocol19600 | Kerberos 5, etype 17, TGS-REP | Network Protocol19800 | Kerberos 5, etype 17, Pre-Auth | Network Protocol28800 | Kerberos 5, etype 17, DB | Network Protocol19700 | Kerberos 5, etype 18, TGS-REP | Network Protocol19900 | Kerberos 5, etype 18, Pre-Auth | Network Protocol28900 | Kerberos 5, etype 18, DB | Network Protocol7500 | Kerberos 5, etype 23, AS-REQ Pre-Auth | Network Protocol13100 | Kerberos 5, etype 23, TGS-REP | Network Protocol18200 | Kerberos 5, etype 23, AS-REP | Network Protocol5500 | NetNTLMv1 / NetNTLMv1+ESS | Network Protocol27000 | NetNTLMv1 / NetNTLMv1+ESS (NT) | Network Protocol5600 | NetNTLMv2 | Network Protocol27100 | NetNTLMv2 (NT) | Network Protocol29100 | Flask Session Cookie ($salt.$salt.$pass) | Network Protocol4800 | iSCSI CHAP authentication, MD5(CHAP) | Network Protocol8500 | RACF | Operating System6300 | AIX {smd5} | Operating System6700 | AIX {ssha1} | Operating System6400 | AIX {ssha256} | Operating System6500 | AIX {ssha512} | Operating System3000 | LM | Operating System19000 | QNX /etc/shadow (MD5) | Operating System19100 | QNX /etc/shadow (SHA256) | Operating System19200 | QNX /etc/shadow (SHA512) | Operating System15300 | DPAPI masterkey file v1 (context 1 and 2) | Operating System15310 | DPAPI masterkey file v1 (context 3) | Operating System15900 | DPAPI masterkey file v2 (context 1 and 2) | Operating System15910 | DPAPI masterkey file v2 (context 3) | Operating System7200 | GRUB 2 | Operating System12800 | MS-AzureSync PBKDF2-HMAC-SHA256 | Operating System12400 | BSDi Crypt, Extended DES | Operating System1000 | NTLM | Operating System9900 | Radmin2 | Operating System5800 | Samsung Android Password/PIN | Operating System28100 | Windows Hello PIN/Password | Operating System13800 | Windows Phone 8+ PIN/password | Operating System2410 | Cisco-ASA MD5 | Operating System9200 | Cisco-IOS $8$ (PBKDF2-SHA256) | Operating System9300 | Cisco-IOS $9$ (scrypt) | Operating System5700 | Cisco-IOS type 4 (SHA256) | Operating System2400 | Cisco-PIX MD5 | Operating System8100 | Citrix NetScaler (SHA1) | Operating System22200 | Citrix NetScaler (SHA512) | Operating System1100 | Domain Cached Credentials (DCC), MS Cache | Operating System2100 | Domain Cached Credentials 2 (DCC2), MS Cache 2 | Operating System7000 | FortiGate (FortiOS) | Operating System26300 | FortiGate256 (FortiOS256) | Operating System125 | ArubaOS | Operating System501 | Juniper IVE | Operating System22 | Juniper NetScreen/SSG (ScreenOS) | Operating System15100 | Juniper/NetBSD sha1crypt | Operating System26500 | iPhone passcode (UID key + System Keybag) | Operating System122 | macOS v10.4, macOS v10.5, macOS v10.6 | Operating System1722 | macOS v10.7 | Operating System7100 | macOS v10.8+ (PBKDF2-SHA512) | Operating System3200 | bcrypt $2*$, Blowfish (Unix) | Operating System500 | md5crypt, MD5 (Unix), Cisco-IOS $1$ (MD5) | Operating System1500 | descrypt, DES (Unix), Traditional DES | Operating System29000 | sha1($salt.sha1(utf16le($username).':'.utf16le($pass))) | Operating System7400 | sha256crypt $5$, SHA256 (Unix) | Operating System1800 | sha512crypt $6$, SHA512 (Unix) | Operating System24600 | SQLCipher | Database Server131 | MSSQL (2000) | Database Server132 | MSSQL (2005) | Database Server1731 | MSSQL (2012, 2014) | Database Server24100 | MongoDB ServerKey SCRAM-SHA-1 | Database Server24200 | MongoDB ServerKey SCRAM-SHA-256 | Database Server12 | PostgreSQL | Database Server11100 | PostgreSQL CRAM (MD5) | Database Server28600 | PostgreSQL SCRAM-SHA-256 | Database Server3100 | Oracle H: Type (Oracle 7+) | Database Server112 | Oracle S: Type (Oracle 11+) | Database Server12300 | Oracle T: Type (Oracle 12+) | Database Server7401 | MySQL $A$ (sha256crypt) | Database Server11200 | MySQL CRAM (SHA1) | Database Server200 | MySQL323 | Database Server300 | MySQL4.1/MySQL5 | Database Server8000 | Sybase ASE | Database Server8300 | DNSSEC (NSEC3) | FTP, HTTP, SMTP, LDAP Server25900 | KNX IP Secure - Device Authentication Code | FTP, HTTP, SMTP, LDAP Server16400 | CRAM-MD5 Dovecot | FTP, HTTP, SMTP, LDAP Server1411 | SSHA-256(Base64), LDAP {SSHA256} | FTP, HTTP, SMTP, LDAP Server1711 | SSHA-512(Base64), LDAP {SSHA512} | FTP, HTTP, SMTP, LDAP Server24900 | Dahua Authentication MD5 | FTP, HTTP, SMTP, LDAP Server10901 | RedHat 389-DS LDAP (PBKDF2-HMAC-SHA256) | FTP, HTTP, SMTP, LDAP Server15000 | FileZilla Server >= 0.9.55 | FTP, HTTP, SMTP, LDAP Server12600 | ColdFusion 10+ | FTP, HTTP, SMTP, LDAP Server1600 | Apache $apr1$ MD5, md5apr1, MD5 (APR) | FTP, HTTP, SMTP, LDAP Server141 | Episerver 6.x < .NET 4 | FTP, HTTP, SMTP, LDAP Server1441 | Episerver 6.x >= .NET 4 | FTP, HTTP, SMTP, LDAP Server1421 | hMailServer | FTP, HTTP, SMTP, LDAP Server101 | nsldap, SHA-1(Base64), Netscape LDAP SHA | FTP, HTTP, SMTP, LDAP Server111 | nsldaps, SSHA-1(Base64), Netscape LDAP SSHA | FTP, HTTP, SMTP, LDAP Server7700 | SAP CODVN B (BCODE) | Enterprise Application Software (EAS)7701 | SAP CODVN B (BCODE) from RFC_READ_TABLE | Enterprise Application Software (EAS)7800 | SAP CODVN F/G (PASSCODE) | Enterprise Application Software (EAS)7801 | SAP CODVN F/G (PASSCODE) from RFC_READ_TABLE | Enterprise Application Software (EAS)10300 | SAP CODVN H (PWDSALTEDHASH) iSSHA-1 | Enterprise Application Software (EAS)133 | PeopleSoft | Enterprise Application Software (EAS)13500 | PeopleSoft PS_TOKEN | Enterprise Application Software (EAS)21500 | SolarWinds Orion | Enterprise Application Software (EAS)21501 | SolarWinds Orion v2 | Enterprise Application Software (EAS)24 | SolarWinds Serv-U | Enterprise Application Software (EAS)8600 | Lotus Notes/Domino 5 | Enterprise Application Software (EAS)8700 | Lotus Notes/Domino 6 | Enterprise Application Software (EAS)9100 | Lotus Notes/Domino 8 | Enterprise Application Software (EAS)26200 | OpenEdge Progress Encode | Enterprise Application Software (EAS)20600 | Oracle Transportation Management (SHA256) | Enterprise Application Software (EAS)4711 | Huawei sha1(md5($pass).$salt) | Enterprise Application Software (EAS)20711 | AuthMe sha256 | Enterprise Application Software (EAS)22400 | AES Crypt (SHA256) | Full-Disk Encryption (FDE)27400 | VMware VMX (PBKDF2-HMAC-SHA1 + AES-256-CBC) | Full-Disk Encryption (FDE)14600 | LUKS v1 (legacy) | Full-Disk Encryption (FDE)29541 | LUKS v1 RIPEMD-160 + AES | Full-Disk Encryption (FDE)29542 | LUKS v1 RIPEMD-160 + Serpent | Full-Disk Encryption (FDE)29543 | LUKS v1 RIPEMD-160 + Twofish | Full-Disk Encryption (FDE)29511 | LUKS v1 SHA-1 + AES | Full-Disk Encryption (FDE)29512 | LUKS v1 SHA-1 + Serpent | Full-Disk Encryption (FDE)29513 | LUKS v1 SHA-1 + Twofish | Full-Disk Encryption (FDE)29521 | LUKS v1 SHA-256 + AES | Full-Disk Encryption (FDE)29522 | LUKS v1 SHA-256 + Serpent | Full-Disk Encryption (FDE)29523 | LUKS v1 SHA-256 + Twofish | Full-Disk Encryption (FDE)29531 | LUKS v1 SHA-512 + AES | Full-Disk Encryption (FDE)29532 | LUKS v1 SHA-512 + Serpent | Full-Disk Encryption (FDE)29533 | LUKS v1 SHA-512 + Twofish | Full-Disk Encryption (FDE)13711 | VeraCrypt RIPEMD160 + XTS 512 bit (legacy) | Full-Disk Encryption (FDE)13712 | VeraCrypt RIPEMD160 + XTS 1024 bit (legacy) | Full-Disk Encryption (FDE)13713 | VeraCrypt RIPEMD160 + XTS 1536 bit (legacy) | Full-Disk Encryption (FDE)13741 | VeraCrypt RIPEMD160 + XTS 512 bit + boot-mode (legacy) | Full-Disk Encryption (FDE)13742 | VeraCrypt RIPEMD160 + XTS 1024 bit + boot-mode (legacy) | Full-Disk Encryption (FDE)13743 | VeraCrypt RIPEMD160 + XTS 1536 bit + boot-mode (legacy) | Full-Disk Encryption (FDE)29411 | VeraCrypt RIPEMD160 + XTS 512 bit | Full-Disk Encryption (FDE)29412 | VeraCrypt RIPEMD160 + XTS 1024 bit | Full-Disk Encryption (FDE)29413 | VeraCrypt RIPEMD160 + XTS 1536 bit | Full-Disk Encryption (FDE)29441 | VeraCrypt RIPEMD160 + XTS 512 bit + boot-mode | Full-Disk Encryption (FDE)29442 | VeraCrypt RIPEMD160 + XTS 1024 bit + boot-mode | Full-Disk Encryption (FDE)29443 | VeraCrypt RIPEMD160 + XTS 1536 bit + boot-mode | Full-Disk Encryption (FDE)13751 | VeraCrypt SHA256 + XTS 512 bit (legacy) | Full-Disk Encryption (FDE)13752 | VeraCrypt SHA256 + XTS 1024 bit (legacy) | Full-Disk Encryption (FDE)13753 | VeraCrypt SHA256 + XTS 1536 bit (legacy) | Full-Disk Encryption (FDE)13761 | VeraCrypt SHA256 + XTS 512 bit + boot-mode (legacy) | Full-Disk Encryption (FDE)13762 | VeraCrypt SHA256 + XTS 1024 bit + boot-mode (legacy) | Full-Disk Encryption (FDE)13763 | VeraCrypt SHA256 + XTS 1536 bit + boot-mode (legacy) | Full-Disk Encryption (FDE)29451 | VeraCrypt SHA256 + XTS 512 bit | Full-Disk Encryption (FDE)29452 | VeraCrypt SHA256 + XTS 1024 bit | Full-Disk Encryption (FDE)29453 | VeraCrypt SHA256 + XTS 1536 bit | Full-Disk Encryption (FDE)29461 | VeraCrypt SHA256 + XTS 512 bit + boot-mode | Full-Disk Encryption (FDE)29462 | VeraCrypt SHA256 + XTS 1024 bit + boot-mode | Full-Disk Encryption (FDE)29463 | VeraCrypt SHA256 + XTS 1536 bit + boot-mode | Full-Disk Encryption (FDE)13721 | VeraCrypt SHA512 + XTS 512 bit (legacy) | Full-Disk Encryption (FDE)13722 | VeraCrypt SHA512 + XTS 1024 bit (legacy) | Full-Disk Encryption (FDE)13723 | VeraCrypt SHA512 + XTS 1536 bit (legacy) | Full-Disk Encryption (FDE)29421 | VeraCrypt SHA512 + XTS 512 bit | Full-Disk Encryption (FDE)29422 | VeraCrypt SHA512 + XTS 1024 bit | Full-Disk Encryption (FDE)29423 | VeraCrypt SHA512 + XTS 1536 bit | Full-Disk Encryption (FDE)13771 | VeraCrypt Streebog-512 + XTS 512 bit (legacy) | Full-Disk Encryption (FDE)13772 | VeraCrypt Streebog-512 + XTS 1024 bit (legacy) | Full-Disk Encryption (FDE)13773 | VeraCrypt Streebog-512 + XTS 1536 bit (legacy) | Full-Disk Encryption (FDE)13781 | VeraCrypt Streebog-512 + XTS 512 bit + boot-mode (legacy) | Full-Disk Encryption (FDE)13782 | VeraCrypt Streebog-512 + XTS 1024 bit + boot-mode (legacy) | Full-Disk Encryption (FDE)13783 | VeraCrypt Streebog-512 + XTS 1536 bit + boot-mode (legacy) | Full-Disk Encryption (FDE)29471 | VeraCrypt Streebog-512 + XTS 512 bit | Full-Disk Encryption (FDE)29472 | VeraCrypt Streebog-512 + XTS 1024 bit | Full-Disk Encryption (FDE)29473 | VeraCrypt Streebog-512 + XTS 1536 bit | Full-Disk Encryption (FDE)29481 | VeraCrypt Streebog-512 + XTS 512 bit + boot-mode | Full-Disk Encryption (FDE)29482 | VeraCrypt Streebog-512 + XTS 1024 bit + boot-mode | Full-Disk Encryption (FDE)29483 | VeraCrypt Streebog-512 + XTS 1536 bit + boot-mode | Full-Disk Encryption (FDE)13731 | VeraCrypt Whirlpool + XTS 512 bit (legacy) | Full-Disk Encryption (FDE)13732 | VeraCrypt Whirlpool + XTS 1024 bit (legacy) | Full-Disk Encryption (FDE)13733 | VeraCrypt Whirlpool + XTS 1536 bit (legacy) | Full-Disk Encryption (FDE)29431 | VeraCrypt Whirlpool + XTS 512 bit | Full-Disk Encryption (FDE)29432 | VeraCrypt Whirlpool + XTS 1024 bit | Full-Disk Encryption (FDE)29433 | VeraCrypt Whirlpool + XTS 1536 bit | Full-Disk Encryption (FDE)23900 | BestCrypt v3 Volume Encryption | Full-Disk Encryption (FDE)16700 | FileVault 2 | Full-Disk Encryption (FDE)27500 | VirtualBox (PBKDF2-HMAC-SHA256 & AES-128-XTS) | Full-Disk Encryption (FDE)27600 | VirtualBox (PBKDF2-HMAC-SHA256 & AES-256-XTS) | Full-Disk Encryption (FDE)20011 | DiskCryptor SHA512 + XTS 512 bit | Full-Disk Encryption (FDE)20012 | DiskCryptor SHA512 + XTS 1024 bit | Full-Disk Encryption (FDE)20013 | DiskCryptor SHA512 + XTS 1536 bit | Full-Disk Encryption (FDE)22100 | BitLocker | Full-Disk Encryption (FDE)12900 | Android FDE (Samsung DEK) | Full-Disk Encryption (FDE)8800 | Android FDE <= 4.3 | Full-Disk Encryption (FDE)18300 | Apple File System (APFS) | Full-Disk Encryption (FDE)6211 | TrueCrypt RIPEMD160 + XTS 512 bit (legacy) | Full-Disk Encryption (FDE)6212 | TrueCrypt RIPEMD160 + XTS 1024 bit (legacy) | Full-Disk Encryption (FDE)6213 | TrueCrypt RIPEMD160 + XTS 1536 bit (legacy) | Full-Disk Encryption (FDE)6241 | TrueCrypt RIPEMD160 + XTS 512 bit + boot-mode (legacy) | Full-Disk Encryption (FDE)6242 | TrueCrypt RIPEMD160 + XTS 1024 bit + boot-mode (legacy) | Full-Disk Encryption (FDE)6243 | TrueCrypt RIPEMD160 + XTS 1536 bit + boot-mode (legacy) | Full-Disk Encryption (FDE)29311 | TrueCrypt RIPEMD160 + XTS 512 bit | Full-Disk Encryption (FDE)29312 | TrueCrypt RIPEMD160 + XTS 1024 bit | Full-Disk Encryption (FDE)29313 | TrueCrypt RIPEMD160 + XTS 1536 bit | Full-Disk Encryption (FDE)29341 | TrueCrypt RIPEMD160 + XTS 512 bit + boot-mode | Full-Disk Encryption (FDE)29342 | TrueCrypt RIPEMD160 + XTS 1024 bit + boot-mode | Full-Disk Encryption (FDE)29343 | TrueCrypt RIPEMD160 + XTS 1536 bit + boot-mode | Full-Disk Encryption (FDE)6221 | TrueCrypt SHA512 + XTS 512 bit (legacy) | Full-Disk Encryption (FDE)6222 | TrueCrypt SHA512 + XTS 1024 bit (legacy) | Full-Disk Encryption (FDE)6223 | TrueCrypt SHA512 + XTS 1536 bit (legacy) | Full-Disk Encryption (FDE)29321 | TrueCrypt SHA512 + XTS 512 bit | Full-Disk Encryption (FDE)29322 | TrueCrypt SHA512 + XTS 1024 bit | Full-Disk Encryption (FDE)29323 | TrueCrypt SHA512 + XTS 1536 bit | Full-Disk Encryption (FDE)6231 | TrueCrypt Whirlpool + XTS 512 bit (legacy) | Full-Disk Encryption (FDE)6232 | TrueCrypt Whirlpool + XTS 1024 bit (legacy) | Full-Disk Encryption (FDE)6233 | TrueCrypt Whirlpool + XTS 1536 bit (legacy) | Full-Disk Encryption (FDE)29331 | TrueCrypt Whirlpool + XTS 512 bit | Full-Disk Encryption (FDE)29332 | TrueCrypt Whirlpool + XTS 1024 bit | Full-Disk Encryption (FDE)29333 | TrueCrypt Whirlpool + XTS 1536 bit | Full-Disk Encryption (FDE)12200 | eCryptfs | Full-Disk Encryption (FDE)10400 | PDF 1.1 - 1.3 (Acrobat 2 - 4) | Document10410 | PDF 1.1 - 1.3 (Acrobat 2 - 4), collider #1 | Document10420 | PDF 1.1 - 1.3 (Acrobat 2 - 4), collider #2 | Document10500 | PDF 1.4 - 1.6 (Acrobat 5 - 8) | Document25400 | PDF 1.4 - 1.6 (Acrobat 5 - 8) - user and owner pass | Document10600 | PDF 1.7 Level 3 (Acrobat 9) | Document10700 | PDF 1.7 Level 8 (Acrobat 10 - 11) | Document9400 | MS Office 2007 | Document9500 | MS Office 2010 | Document9600 | MS Office 2013 | Document25300 | MS Office 2016 - SheetProtection | Document9700 | MS Office <= 2003 $0/$1, MD5 + RC4 | Document9710 | MS Office <= 2003 $0/$1, MD5 + RC4, collider #1 | Document9720 | MS Office <= 2003 $0/$1, MD5 + RC4, collider #2 | Document9810 | MS Office <= 2003 $3, SHA1 + RC4, collider #1 | Document9820 | MS Office <= 2003 $3, SHA1 + RC4, collider #2 | Document9800 | MS Office <= 2003 $3/$4, SHA1 + RC4 | Document18400 | Open Document Format (ODF) 1.2 (SHA-256, AES) | Document18600 | Open Document Format (ODF) 1.1 (SHA-1, Blowfish) | Document16200 | Apple Secure Notes | Document23300 | Apple iWork | Document6600 | 1Password, agilekeychain | Password Manager8200 | 1Password, cloudkeychain | Password Manager9000 | Password Safe v2 | Password Manager5200 | Password Safe v3 | Password Manager6800 | LastPass + LastPass sniffed | Password Manager13400 | KeePass 1 (AES/Twofish) and KeePass 2 (AES) | Password Manager29700 | KeePass 1 (AES/Twofish) and KeePass 2 (AES) - keyfile only mode | Password Manager23400 | Bitwarden | Password Manager16900 | Ansible Vault | Password Manager26000 | Mozilla key3.db | Password Manager26100 | Mozilla key4.db | Password Manager23100 | Apple Keychain | Password Manager11600 | 7-Zip | Archive12500 | RAR3-hp | Archive23800 | RAR3-p (Compressed) | Archive23700 | RAR3-p (Uncompressed) | Archive13000 | RAR5 | Archive17220 | PKZIP (Compressed Multi-File) | Archive17200 | PKZIP (Compressed) | Archive17225 | PKZIP (Mixed Multi-File) | Archive17230 | PKZIP (Mixed Multi-File Checksum-Only) | Archive17210 | PKZIP (Uncompressed) | Archive20500 | PKZIP Master Key | Archive20510 | PKZIP Master Key (6 byte optimization) | Archive23001 | SecureZIP AES-128 | Archive23002 | SecureZIP AES-192 | Archive23003 | SecureZIP AES-256 | Archive13600 | WinZip | Archive18900 | Android Backup | Archive24700 | Stuffit5 | Archive13200 | AxCrypt 1 | Archive13300 | AxCrypt 1 in-memory SHA1 | Archive23500 | AxCrypt 2 AES-128 | Archive23600 | AxCrypt 2 AES-256 | Archive14700 | iTunes backup < 10.0 | Archive14800 | iTunes backup >= 10.0 | Archive8400 | WBB3 (Woltlab Burning Board) | Forums, CMS, E-Commerce2612 | PHPS | Forums, CMS, E-Commerce121 | SMF (Simple Machines Forum) > v1.1 | Forums, CMS, E-Commerce3711 | MediaWiki B type | Forums, CMS, E-Commerce4521 | Redmine | Forums, CMS, E-Commerce24800 | Umbraco HMAC-SHA1 | Forums, CMS, E-Commerce11 | Joomla < 2.5.18 | Forums, CMS, E-Commerce13900 | OpenCart | Forums, CMS, E-Commerce11000 | PrestaShop | Forums, CMS, E-Commerce16000 | Tripcode | Forums, CMS, E-Commerce7900 | Drupal7 | Forums, CMS, E-Commerce4522 | PunBB | Forums, CMS, E-Commerce2811 | MyBB 1.2+, IPB2+ (Invision Power Board) | Forums, CMS, E-Commerce2611 | vBulletin < v3.8.5 | Forums, CMS, E-Commerce2711 | vBulletin >= v3.8.5 | Forums, CMS, E-Commerce25600 | bcrypt(md5($pass)) / bcryptmd5 | Forums, CMS, E-Commerce25800 | bcrypt(sha1($pass)) / bcryptsha1 | Forums, CMS, E-Commerce28400 | bcrypt(sha512($pass)) / bcryptsha512 | Forums, CMS, E-Commerce21 | osCommerce, xt:Commerce | Forums, CMS, E-Commerce18100 | TOTP (HMAC-SHA1) | One-Time Password2000 | STDOUT | Plaintext99999 | Plaintext | Plaintext21600 | Web2py pbkdf2-sha512 | Framework10000 | Django (PBKDF2-SHA256) | Framework124 | Django (SHA-1) | Framework12001 | Atlassian (PBKDF2-HMAC-SHA1) | Framework19500 | Ruby on Rails Restful-Authentication | Framework27200 | Ruby on Rails Restful Auth (one round, no sitekey) | Framework30000 | Python Werkzeug MD5 (HMAC-MD5 (key = $salt)) | Framework30120 | Python Werkzeug SHA256 (HMAC-SHA256 (key = $salt)) | Framework20200 | Python passlib pbkdf2-sha512 | Framework20300 | Python passlib pbkdf2-sha256 | Framework20400 | Python passlib pbkdf2-sha1 | Framework24410 | PKCS#8 Private Keys (PBKDF2-HMAC-SHA1 + 3DES/AES) | Private Key24420 | PKCS#8 Private Keys (PBKDF2-HMAC-SHA256 + 3DES/AES) | Private Key15500 | JKS Java Key Store Private Keys (SHA1) | Private Key22911 | RSA/DSA/EC/OpenSSH Private Keys ($0$) | Private Key22921 | RSA/DSA/EC/OpenSSH Private Keys ($6$) | Private Key22931 | RSA/DSA/EC/OpenSSH Private Keys ($1, $3$) | Private Key22941 | RSA/DSA/EC/OpenSSH Private Keys ($4$) | Private Key22951 | RSA/DSA/EC/OpenSSH Private Keys ($5$) | Private Key23200 | XMPP SCRAM PBKDF2-SHA1 | Instant Messaging Service28300 | Teamspeak 3 (channel hash) | Instant Messaging Service22600 | Telegram Desktop < v2.1.14 (PBKDF2-HMAC-SHA1) | Instant Messaging Service24500 | Telegram Desktop >= v2.1.14 (PBKDF2-HMAC-SHA512) | Instant Messaging Service22301 | Telegram Mobile App Passcode (SHA256) | Instant Messaging Service23 | Skype | Instant Messaging Service29600 | Terra Station Wallet (AES256-CBC(PBKDF2($pass))) | Cryptocurrency Wallet26600 | MetaMask Wallet | Cryptocurrency Wallet21000 | BitShares v0.x - sha512(sha512_bin(pass)) | Cryptocurrency Wallet28501 | Bitcoin WIF private key (P2PKH), compressed | Cryptocurrency Wallet28502 | Bitcoin WIF private key (P2PKH), uncompressed | Cryptocurrency Wallet28503 | Bitcoin WIF private key (P2WPKH, Bech32), compressed | Cryptocurrency Wallet28504 | Bitcoin WIF private key (P2WPKH, Bech32), uncompressed | Cryptocurrency Wallet28505 | Bitcoin WIF private key (P2SH(P2WPKH)), compressed | Cryptocurrency Wallet28506 | Bitcoin WIF private key (P2SH(P2WPKH)), uncompressed | Cryptocurrency Wallet11300 | Bitcoin/Litecoin wallet.dat | Cryptocurrency Wallet16600 | Electrum Wallet (Salt-Type 1-3) | Cryptocurrency Wallet21700 | Electrum Wallet (Salt-Type 4) | Cryptocurrency Wallet21800 | Electrum Wallet (Salt-Type 5) | Cryptocurrency Wallet12700 | Blockchain, My Wallet | Cryptocurrency Wallet15200 | Blockchain, My Wallet, V2 | Cryptocurrency Wallet18800 | Blockchain, My Wallet, Second Password (SHA256) | Cryptocurrency Wallet25500 | Stargazer Stellar Wallet XLM | Cryptocurrency Wallet16300 | Ethereum Pre-Sale Wallet, PBKDF2-HMAC-SHA256 | Cryptocurrency Wallet15600 | Ethereum Wallet, PBKDF2-HMAC-SHA256 | Cryptocurrency Wallet15700 | Ethereum Wallet, SCRYPT | Cryptocurrency Wallet22500 | MultiBit Classic .key (MD5) | Cryptocurrency Wallet27700 | MultiBit Classic .wallet (scrypt) | Cryptocurrency Wallet22700 | MultiBit HD (scrypt) | Cryptocurrency Wallet28200 | Exodus Desktop Wallet (scrypt) | Cryptocurrency Wallet- [ Brain Client Features ] -# | Features===+========1 | Send hashed passwords2 | Send attack positions3 | Send hashed passwords and attack positions- [ Outfile Formats ] -# | Format===+========1 | hash[:salt]2 | plain3 | hex_plain4 | crack_pos5 | timestamp absolute6 | timestamp relative- [ Rule Debugging Modes ] -# | Format===+========1 | Finding-Rule2 | Original-Word3 | Original-Word:Finding-Rule4 | Original-Word:Finding-Rule:Processed-Word5 | Original-Word:Finding-Rule:Processed-Word:Wordlist- [ Attack Modes ] -# | Mode===+======0 | Straight1 | Combination3 | Brute-force6 | Hybrid Wordlist + Mask7 | Hybrid Mask + Wordlist9 | Association- [ Built-in Charsets ] -? | Charset===+=========l | abcdefghijklmnopqrstuvwxyz [a-z]u | ABCDEFGHIJKLMNOPQRSTUVWXYZ [A-Z]d | 0123456789 [0-9]h | 0123456789abcdef [0-9a-f]H | 0123456789ABCDEF [0-9A-F]s | !"#$%&'()*+,-./:;<=>?@[\]^_`{|}~a | ?l?u?d?sb | 0x00 - 0xff- [ OpenCL Device Types ] -# | Device Type===+=============1 | CPU2 | GPU3 | FPGA, DSP, Co-Processor- [ Workload Profiles ] -# | Performance | Runtime | Power Consumption | Desktop Impact===+=============+=========+===================+=================1 | Low | 2 ms | Low | Minimal2 | Default | 12 ms | Economic | Noticeable3 | High | 96 ms | High | Unresponsive4 | Nightmare | 480 ms | Insane | Headless- [ License ] -hashcat is licensed under the MIT licenseCopyright and license terms are listed in docs/license.txt- [ Basic Examples ] -Attack- | Hash- |Mode | Type | Example command==================+=======+==================================================================Wordlist | $P$ | hashcat -a 0 -m 400 example400.hash example.dictWordlist + Rules | MD5 | hashcat -a 0 -m 0 example0.hash example.dict -r rules/best64.ruleBrute-Force | MD5 | hashcat -a 3 -m 0 example0.hash ?a?a?a?a?a?aCombinator | MD5 | hashcat -a 1 -m 0 example0.hash example.dict example.dictAssociation | $1$ | hashcat -a 9 -m 500 example500.hash 1word.dict -r rules/best64.ruleIf you still have no idea what just happened, try the following pages:* https://hashcat.net/wiki/#howtos_videos_papers_articles_etc_in_the_wild
* https://hashcat.net/faq/If you think you need help by a real human come to the hashcat Discord:* https://hashcat.net/discord
Default Values
Attribute Value Note
--hash-type 0
--attack-mode 0
--version 0
--help 0
--quiet 0
--hex-charset 0
--hex-salt 0
--hex-wordlist 0
--force 0 do NOT use this unless you are a developer
--status 0
--status-json 0
--status-timer 10
--stdin-timeout-abort 120
--machine-readable 0
--keep-guessing 0
--self-test-disable 0
--loopback 0
--markov-hcstat2 hashcat.hcstat2
--markov-disable 0
--markov-classic 0
--markov-threshold 0
--runtime 0
--session hashcat
--restore 0
--restore-disable 0
--restore-file-path
--outfile
--outfile-format 1,2
--outfile-autohex-disable 0
--outfile-check-timer 5
--wordlist-autohex-disable 0
--separator :
--stdout 0
--show 0
--left 0
--username 0
--remove 0
--remove-timer 60
--potfile-disable 0
--potfile-path hashcat.potfile
--encoding-from utf8
--encoding-to utf8
--debug-mode 0
--debug-file
--induction-dir hashcat.induct
--outfile-check-dir hashcat.outfiles
--logfile-disable 0
--hccapx-message-pair 0
--nonce-error-corrections 8
--keyboard-layout-mapping
--truecrypt-keyfiles
--veracrypt-keyfiles
--veracrypt-pim-start 485
--veracrypt-pim-stop 485
--benchmark 0
--benchmark-all 0
--speed-only 0
--progress-only 0
--segment-size 33554432
--bitmap-min 16
--bitmap-max 18
--cpu-affinity
--hook-threads 0
--example-hashes 0
--backend-ignore-cuda 0
--backend-ignore-opencl 0
--backend-info 0
--backend-devices default: all GPUs if available
--opencl-device-types default: GPUs if available
--optimized-kernel-enable 0
--workload-profile 2
--kernel-accel 0 default: autotune
--kernel-loops 0 default: autotune
--kernel-threads 0 default: autotune
--backend-vector-width 0 default: autotune
--spin-damp 0
--hwmon-disable 0
--hwmon-temp-abort 90
--scrypt-tmto 0 default: autotune
--skip 0
--limit 0
--keyspace 0
--rule-left :
--rule-right :
--rules-file
--generate-rules 0
--generate-rules-func-min 1
--generate-rules-func-max 4
--generate-rules-seed 0
--custom-charset1 ?l?d?u #
--custom-charset2 ?l?d #
--custom-charset3 ?l?d*!$@_ #
--custom-charset4 #
--increment 0
--increment-min 1
--increment-max PW_MAX limit depends on algo and pure/optimized mode
--slow-candidates 0
--brain-server 0
--brain-server-timer 300
--brain-client 0
--brain-client-features 2
--brain-host localhost
--brain-port 6863
--brain-password $random
--brain-session $computed
--brain-session-whitelist
