Share to: share facebook share twitter share wa share telegram print page

Hashcat

Hashcat
Developer(s)Jens 'atom' Steube, Gabriele 'matrix' Gristina
Stable release
7.1.0[1] Edit this on Wikidata / 16 August 2025; 19 days ago (16 August 2025)
Repositorygithub.com/hashcat/hashcat
Operating systemCross-platform
TypePassword cracking
LicenseMIT License
Websitewww.hashcat.net Edit this at Wikidata

Hashcat is a password recovery tool. It had a proprietary code base until 2015, but was then released as open source software. Versions are available for Linux, macOS, and Windows. Examples of hashcat-supported hashing algorithms are LM hashes, MD4, MD5, SHA-family and Unix Crypt formats as well as algorithms used in MySQL and Cisco PIX.

Hashcat has received publicity because it is partly based on flaws in other software discovered by its creator. An example was a flaw in 1Password's password manager hashing scheme.[2] It has also been compared to similar software in a Usenix publication[3] and been described on Ars Technica.[4]

Variants

Previously, two variants of hashcat existed:

  • hashcat - CPU-based password recovery tool
  • oclHashcat/cudaHashcat - GPU-accelerated tool (OpenCL or CUDA)

With the release of hashcat v3.00, the GPU and CPU tools were merged into a single tool called hashcat. The CPU-only version became hashcat-legacy.[5] Both CPU and GPU now require OpenCL.

Many of the algorithms supported by hashcat-legacy (such as MD5, SHA1, and others) can be cracked in a shorter time with the GPU-based hashcat.[6] However, not all algorithms can be accelerated by GPUs. Bcrypt is an example of this. Due to factors such as data-dependent branching, serialization, and memory (and more), oclHashcat/cudaHashcat weren't catchall replacements for hashcat-legacy.

hashcat-legacy is available for Linux, OSX and Windows. hashcat is available for macOS, Windows, and Linux with GPU, CPU and generic OpenCL support which allows for FPGAs and other accelerator cards.

Sample output

hashcat (v7.0.0) starting

CUDA API (CUDA 12.9)
====================
* Device #01: NVIDIA GeForce RTX 4090, 23687/24080 MB, 128MCU
* Device #02: NVIDIA GeForce RTX 4090, 23687/24080 MB, 128MCU

OpenCL API (OpenCL 3.0 CUDA 12.9.76) - Platform #2 [NVIDIA Corporation]
=======================================================================
* Device #04: NVIDIA GeForce RTX 4090, skipped
* Device #05: NVIDIA GeForce RTX 4090, skipped

Minimum password length supported by kernel: 0
Maximum password length supported by kernel: 256
Minimum salt length supported by kernel: 0
Maximum salt length supported by kernel: 256

Hashes: 1 digests; 1 unique digests, 1 unique salts
Bitmaps: 16 bits, 65536 entries, 0x0000ffff mask, 262144 bytes, 5/13 rotates

Optimizers applied:
* Zero-Byte
* Single-Hash
* Single-Salt
* Brute-Force
* Slow-Hash-DimensionY-LOOP

Watchdog: Temperature abort trigger set to 90c

Host memory allocated for this attack: 512 MB (164979 MB free)

$argon2id$v=19$m=65536,t=3,p=1$FBMjI4RJBhIykCgol1KEJA$2ky5GAdhT1kH4kIgPN/oERE3Taiy43vNN70a3HpiKQU:hashcat

Session..........: hashcat
Status...........: Cracked
Hash.Mode........: 34000 (Argon2)
Hash.Target......: $argon2id$v=19$m=65536,t=3,p=1$FBMjI4RJBhIykCgol1KE...HpiKQU
Time.Started.....: Fri Aug  1 14:07:43 2025 (14 secs)
Time.Estimated...: Fri Aug  1 14:07:57 2025 (0 secs)
Kernel.Feature...: Pure Kernel (password length 0-256 bytes)
Guess.Mask.......: ?l?l?l?lcat [7]
Guess.Queue......: 1/1 (100.00%)
Speed.#01........:     1699 H/s (17.23ms) @ Accel:354 Loops:1 Thr:32 Vec:1
Speed.#02........:     1696 H/s (17.21ms) @ Accel:354 Loops:1 Thr:32 Vec:1
Speed.#*.........:     3395 H/s
Recovered........: 1/1 (100.00%) Digests (total), 1/1 (100.00%) Digests (new)
Progress.........: 45666/456976 (9.99%)
Rejected.........: 0/45666 (0.00%)
Restore.Point....: 1062/17576 (6.04%)
Restore.Sub.#01..: Salt:0 Amplifier:12-13 Iteration:11-12
Restore.Sub.#02..: Salt:0 Amplifier:12-13 Iteration:10-11
Candidate.Engine.: Device Generator
Candidates.#01...: htrecat -> hoelcat
Candidates.#02...: hepacat -> hbencat
Hardware.Mon.#01.: Temp: 53c Fan: 30% Util: 99% Core:2790MHz Mem:10251MHz Bus:16
Hardware.Mon.#02.: Temp: 51c Fan: 30% Util: 99% Core:2715MHz Mem:10251MHz Bus:8

Started: Fri Aug  1 14:07:35 2025
Stopped: Fri Aug  1 14:07:58 2025

Attack types

Hashcat offers multiple attack modes for obtaining effective and complex coverage over a hash's keyspace. These modes are:

The traditional bruteforce attack is considered outdated, and the Hashcat core team recommends the Mask-Attack as a full replacement.

Competitions

Team Hashcat[9] (the official team of the Hashcat software composed of core Hashcat members) won first place in the KoreLogic "Crack Me If you Can" Competitions at DefCon in 2010,[10] 2012, 2014,[11] 2015,[12] and 2018, and at DerbyCon in 2017.

See also

References

  1. ^ "Release 7.1.0". 16 August 2025. Retrieved 16 August 2025.
  2. ^ "On hashcat and strong Master Passwords as your best protection". Passwords. Agile Bits. 16 April 2013.
  3. ^ Ur, Blase (12 August 2015). "Measuring Real-World Accuracies and Biases in Modeling Password Guessability" (PDF). Proceedings of the 24th USENIX Security Symposium.
  4. ^ Goodin, Dan (26 August 2013). ""thereisnofatebutwhatwemake" - Turbo-charged cracking comes to long passwords". Ars Technica. Retrieved 21 July 2020.
  5. ^ "hashcat v3.00". Hashcat. Hashcat project. 29 June 2016.
  6. ^ "Recent Developments in Password Cracking". Passwords. Bruce Schneier. 19 September 2012.
  7. ^ a b c d e f g "Hashcat [hashcat wiki]".
  8. ^ "PRINCE: modern password guessing algorithm" (PDF). Hashcat site. Hashcat. 8 December 2014.
  9. ^ Team Hashcat
  10. ^ ""Crack Me If You Can" - DEFCON 2010". contest-2010.korelogic.com. Retrieved 21 July 2020.
  11. ^ "Crack Me If You Can 2014 Contest". KoreLogic Security.
  12. ^ "Another trophy in the Pocket! Win @ CMIYC contest 2015". hashcat.net. Retrieved 21 July 2020.

Index: pl ar de en es fr it arz nl ja pt ceb sv uk vi war zh ru af ast az bg zh-min-nan bn be ca cs cy da et el eo eu fa gl ko hi hr id he ka la lv lt hu mk ms min no nn ce uz kk ro simple sk sl sr sh fi ta tt th tg azb tr ur zh-yue hy my ace als am an hyw ban bjn map-bms ba be-tarask bcl bpy bar bs br cv nv eml hif fo fy ga gd gu hak ha hsb io ig ilo ia ie os is jv kn ht ku ckb ky mrj lb lij li lmo mai mg ml zh-classical mr xmf mzn cdo mn nap new ne frr oc mhr or as pa pnb ps pms nds crh qu sa sah sco sq scn si sd szl su sw tl shn te bug vec vo wa wuu yi yo diq bat-smg zu lad kbd ang smn ab roa-rup frp arc gn av ay bh bi bo bxr cbk-zam co za dag ary se pdc dv dsb myv ext fur gv gag inh ki glk gan guw xal haw rw kbp pam csb kw km kv koi kg gom ks gcr lo lbe ltg lez nia ln jbo lg mt mi tw mwl mdf mnw nqo fj nah na nds-nl nrm nov om pi pag pap pfl pcd krc kaa ksh rm rue sm sat sc trv stq nso sn cu so srn kab roa-tara tet tpi to chr tum tk tyv udm ug vep fiu-vro vls wo xh zea ty ak bm ch ny ee ff got iu ik kl mad cr pih ami pwn pnt dz rmy rn sg st tn ss ti din chy ts kcg ve
Prefix: a b c d e f g h i j k l m n o p q r s t u v w x y z 0 1 2 3 4 5 6 7 8 9

Portal di Ensiklopedia Dunia

Portal : Agama
Agama
Portal : Bahasa
Bahasa
Portal : Biografi
Biografi
Portal : Budaya
Budaya
Portal : Ekonomi
Ekonomi
Portal : Elektronika
Elektronika
Portal : Film
Film
Portal : Filsafat
Filsafat
Portal : Geografi
Geografi
Portal : Indonesia
Indonesia
Portal : Ilmu
Ilmu
Portal : Lingkungan
Lingkungan
Portal : Masyarakat
Masyarakat
Portal : Matematika
Matematika
Portal : Militer
Militer
Portal : Mitologi
Mitologi
Portal : Musik
Musik
Portal : Olahraga
Olahraga
Portal : Pendidikan
Pendidikan
Portal : Politik
Politik
Portal : Sastra
Sastra
Portal : Sejarah
Sejarah
Portal : Seni
Seni
Portal : Teknologi
Teknologi
Kembali kehalaman sebelumnya