Overview
hashcat is the fastest offline password cracker available. For wireless attacks it cracks WPA2 handshakes (mode 22000), MSCHAPv2 hashes captured from WPA Enterprise rogue AP attacks (mode 5500), and NTLMv2 hashes from hostile portal attacks (mode 5600).Install
Relevant Hash Modes
| Mode | Hash Type |
|---|---|
22000 | WPA-PMKID / WPA handshake (current) |
2500 | WPA handshake (legacy) |
5500 | NetNTLMv1 / MSCHAPv2 |
5600 | NetNTLMv2 |
Usage
Attack Modes
| Flag | Mode |
|---|---|
-a 0 | Dictionary attack |
-a 1 | Combination attack |
-a 3 | Brute-force / mask attack |
-a 6 | Hybrid wordlist + mask |
Common Flags
| Flag | Description |
|---|---|
-m <mode> | Hash type |
-a <mode> | Attack mode |
-w <1-4> | Workload profile (4 = insane) |
--force | Ignore warnings (needed in VMs) |
-o <file> | Output cracked hashes to file |
--show | Show previously cracked hashes |
-r <rules> | Apply rule file |
--status | Show live status during attack |