Scribd
Upload
18 views

Cracking Windows Passwords With Hashcat

Uploaded by

heistercobracys01
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
18 views

Cracking Windows Passwords With Hashcat

Uploaded by

heistercobracys01
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 17

Cracking Windows Passwords

with Hashcat
@mmar

1
Hashcat is a GPU based tool, so you need to have it
running on a machine with a powerful graphics card with
all drivers. It can be your windows machine, Ubuntu/ Kali
machine or you can do it in the cloud
For this lecture, we are going to use it on Windows with
all GPU drivers installed
CONCEPT
Step-1 Step-2
• Get the Hash from the SAM • Crack the hash with hashcat
file with Kali Linux and RockYou dictionary on
(Samdump2) our PC

3
Attack
Scenorio

• You have physical access to a system which is password locked. The


tool can be used to quickly crack the password

You can copy the extracted hashes from the SAM file with Kali Linux in a
USB drive and then in your own time (offline attack) crack the hashes at
your home on your main machine with hashcat

4
We need to have Kali Live boot USB
(Check the lecture “Kali Linux as a bootable USB
Drive”)
Step- 1
 Install the Hashcat from official website in your main PC

https://hashcat.net/hashcat/

6
Step- 2
 Download and extract the rockyou dictionary in
hashcat folder

https://github.com/brannondorsey/naive‐hashcat/releases/download/data/rockyou.txt

7
Step- 3
 Boot from Kali Linux USB drive

Plug in USB to target PC and Boot from USB

8
Step- 4
 Navigate to windows/system32/config folder and copy
these files to Kali Desktop
SAM & SYSTEM

9
Step- 5
 Now open the terminal on the desktop and dump the
hashes with following command
Samdump2 SYSTEM SAM >hash.txt

Here :
 Samdump2 is the tool we are using
 Hash.txt will contain all hashes that we are aiming to crack

10
Step- 6
 Now copy the hash.txt file to hashcat folder on your
main PC (You can use a USB to copy the file)

11
Step- 7
 Open the Power shell and then use the command to crack the
passwords

.\Hashcat.exe ‐m 1000 ‐a 0 ‐o cracked.txt hash.txt rockyou.txt

Here :
 1000 tells the hashcat that its Windows password to be
cracked
 Cracked.txt will store cracked passwords
 hash.txt is the source file
 Rockyou.txt is the dictionary file

12
Step- 7
 Open the Power shell and then use the command to crack the
passwords

.\Hashcat.exe ‐m 1000 ‐a 0 ‐o cracked.txt hash.txt rockyou.txt

13
Step- 8
 Open the cracked.txt file to view the cracked password

14
DEMO

15
Step- 4 (Optional)

To select a particular device. Just select the device with category


flag.

To select Device 3 only, use –D 2 –d 3

16
THANKS

17

You might also like