Run collected hashes through John the Ripper and/or oclHashcat

KvasirSecurity / Kvasir

Kvasir: Penetration Test Data Management

Other

426 stars 85 forks source link

Run collected hashes through John the Ripper and/or oclHashcat #75

Open grutz opened 10 years ago

grutz commented 10 years ago

You've collected hashes, Kvasir compares them to already known cleartext combinations, how about running what's left through John the Ripper?

JTR directory run directory should be configured in yaml
Support JTR option selection
Set scheduler timeout length or run time?
Q: use std JTR or magnum/bleeding?
Supported hash types? (LM, NTLM, Oracle, DES, MDx, SHAx, etc)

peterclemenko commented 10 years ago

Hashcat would be better. John is slow

grutz commented 10 years ago

I agree, however since I know a lot of people use Kvasir in a virtualized environment it's easier to run some quick rules/dictionaries using JTR. I wouldn't expect this type of run to last more than 5-10 minutes at most. Anything longer and you'd want to shove off into a separate system.

The primary goal of this is to get quick results out of hash imports much like Metasploit Pro does.