Rapid7 Vulnerability & Exploit Database

Password Cracker: Windows

Back to Search

Password Cracker: Windows

Created
11/08/2019

Description

This module uses John the Ripper or Hashcat to identify weak passwords that have been acquired from Windows systems. LANMAN is format 3000 in hashcat. NTLM is format 1000 in hashcat. MSCASH is format 1100 in hashcat. MSCASH2 is format 2100 in hashcat. NetNTLM is format 5500 in hashcat. NetNTLMv2 is format 5600 in hashcat.

Author(s)

  • theLightCosine <theLightCosine@metasploit.com>
  • hdm <x@hdm.io>
  • h00die

Development

Module Options

To display the available options, load the module within the Metasploit console and run the commands 'show options' or 'show advanced':

msf > use auxiliary/analyze/crack_windows
msf auxiliary(crack_windows) > show actions
    ...actions...
msf auxiliary(crack_windows) > set ACTION < action-name >
msf auxiliary(crack_windows) > show options
    ...show and set options...
msf auxiliary(crack_windows) > run 

Time is precious, so I don’t want to do something manually that I can automate. Leveraging the Metasploit Framework when automating any task keeps us from having to re-create the wheel as we can use the existing libraries and focus our efforts where it matters.

– Jim O’Gorman | President, Offensive Security

;