bitcracker
john
Our great sponsors
bitcracker | john | |
---|---|---|
10 | 77 | |
752 | 9,113 | |
- | 2.9% | |
0.0 | 9.3 | |
2 months ago | 8 days ago | |
C | C | |
GNU General Public License v3.0 only | - |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
bitcracker
- Accessing old laptop removed from domain
-
What's on your magic USB drive?
This is correct, you can bypass Bitlocker if it uses a password instead of or in addition to the 48-digit encryption key. You're looking for this: https://github.com/e-ago/bitcracker unless there's a newer version. This is what I've used in the past.
-
Mounted hard drive encryption
but yeah, as the others have said you can definitely mount a windows drive on linux. I prefer using gparted cause you can visualize the partitions, but testdisk and photorec can also provide insights into the partition sizes and can do full data recovery on the non-encrypted partitions. This also looks pretty promising, but from my experience, you'll probably have to set up a dedicated machine up for running it... I'm guessing about 7-8 weeks to run it on, also guessing it's about 128gb drive / iso: https://github.com/e-ago/bitcracker These are just guess on the performance though, that I'm basing on previous experiments from scrubbing drives in the past...
john
-
Best Hacking Tools for Beginners 2024
John The Ripper
-
Wordlists ,Crunch, John and Hash Cat - All Kali Word List Tools Explained.
🔗Kali Linux Wordlist: What you need to know 🔗crunch 🔗WordLists - Kali-Tools 🔗WordLists - GitLab - repository 🔗John - Kali-Tools . 🔗Openwall -github repository -John 🔗John-The-Ripper-Tutorial - Techy Rick 🔗Openwall -John - Offical Website . 🔗Hash Cat - Wiki 🔗Cap 2 Hashcat 🔗Markov - Chain 🔗Hash Cat - Forums 🔗Security Stack Exchange - Question 260773 🔗StationX - How to use Hashcat 🔗MSF/Wordlists - charlesreid 🔗MSFConsole 🔗How to use hashcat 🔗MSF/Wordlists - charlesreid1 🔗Where do the words in /usr/share/dict/words come from? 🔗SCOWL (Spell Checker Oriented Word Lists) 🔗The spell utility -spell - find spelling errors (LEGACY) - UNIX What are Different Types of Cryptography? sha1-vs-sha2-the-technical-difference-explained-by-ssl-experts/ 🔗password-encryption 🔗Secure-Programs SHA-1 🔗What-are-computer-algorithms 🔗What Are MD5, SHA-1, and SHA-256 Hashes, and How Do I Check Them? - howtogeek.com 🔗kali-linux-wordlist-what-you-need-to-know
-
password decryption help
I think the most used is still John the ripper. I don't know how easy it's to use it for your case though, I only tried it many years ago.
Ok, both John the ripper, hashcat and other tools seem to support extracting the hash, or directly trying to discover the password.
- Metasploit explained for pentesters
-
Inception: Leaking the root hash from /etc./shadow on AMD Zen 4 [video]
With the root hash you can crack the root password using tools like John The Ripper[0]. More generally, I assume, this exploit can be used to read any arbitrary files on the system, bypassing regular access control, and plenty of other stuff you aren't supposed to be able to do as a non-privileged user.
-
Hackers Tools: Must-Have Tools for Every Ethical Hacker
John the Ripper
-
Why Isn't a Timer Capable of Preventing Brute Force
However, most credential brute forcing takes place offline against a leaked database from some site. A program like John the Ripper is used to try hashing each word in a dictionary until it matches the entries in the database. Because this all happens offline, there's no mechanism in place to delay the attempts or lock the user out.
-
Notes from competing in my first CTF
For this, I downloaded wordlists such as the rockyou wordlist and used tools such as Hashcat and John the ripper.
-
How to make a specified wordlist?
John the Ripper may also have this ability though IIRC it's not quite as powerful.
What are some alternatives?
hashcat - World's fastest and most advanced password recovery utility
brainflayer - A proof-of-concept cracker for cryptocurrency brainwallets and other low entropy key algorithms.
btcrecover - BTCRecover is an open source wallet password and seed recovery tool. For seed based recovery, this is primarily useful in situations where you have lost/forgotten parts of your mnemonic, or have made an error transcribing it. (So you are either seeing an empty wallet or gettign an error that your seed is invalid) For wallet password or passphrase recovery, it is primarily useful if you have a reasonable idea about what your password might be.
mimikatz - A little tool to play with Windows security
JohnTheRipper - John the Ripper jumbo - advanced offline password cracker, which supports hundreds of hash and cipher types, and runs on many operating systems, CPUs, GPUs, and even some FPGAs [Moved to: https://github.com/openwall/john]
jwt-cracker - Simple HS256, HS384 & HS512 JWT token brute force cracker.
walletool - a tool for reading wallet.dat files
bruteforce-wallet - Try to find the password of an encrypted Peercoin (or Bitcoin, Litecoin, etc...) wallet file.
hashtopolis - Hashtopolis - distributed password cracking with Hashcat
CrackMapExec - A swiss army knife for pentesting networks