module
Password Cracker: Linux
| Disclosed | Created |
|---|---|
| N/A | 2019-11-08 |
Disclosed
N/A
Created
2019-11-08
Description
This module uses John the Ripper or Hashcat to identify weak passwords that have been
acquired from unshadowed passwd files from Unix/Linux systems. The module will only crack
MD5, BSDi and DES implementations by default. However, it can also crack
Blowfish and SHA(256/512), but it is much slower.
MD5 is format 500 in hashcat.
DES is format 1500 in hashcat.
BSDI is format 12400 in hashcat.
BLOWFISH is format 3200 in hashcat.
SHA256 is format 7400 in hashcat.
SHA512 is format 1800 in hashcat.
acquired from unshadowed passwd files from Unix/Linux systems. The module will only crack
MD5, BSDi and DES implementations by default. However, it can also crack
Blowfish and SHA(256/512), but it is much slower.
MD5 is format 500 in hashcat.
DES is format 1500 in hashcat.
BSDI is format 12400 in hashcat.
BLOWFISH is format 3200 in hashcat.
SHA256 is format 7400 in hashcat.
SHA512 is format 1800 in hashcat.
Authors
theLightCosine theLightCosine@metasploit.com
hdm x@hdm.io
h00die
hdm x@hdm.io
h00die
References
Module Options
To display the available options, load the module within the Metasploit console and run the commands ‘show options’ or ‘show advanced’:
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.