Skip to main content

johntheripper

https://github.com/openwall/john

Password cracking tool. It does not do anything magic, it just compares a hash file with a list of words (dictionary). It has a quite decent default dictionary, however, you can search for more complete dictionaries such as the rock-you.txt

Make sure to install a version >= 1.9.0, which enables support for many hash formats. In my case for 1.8.0 version I couldn't crack a NTLMv2 hash.

You can also use zip2john tool to brute-force zip files with passwords.

You can specify the format as well:

john --format=raw-md5 passwd.txt

You can determine the type of hash by running hashid and then check with:

john --list=formats