crack-hashcat

# Hashcat Password Recovery ## Overview Hashcat is the world's fastest password recovery tool, supporting over 300 hash algorithms and multiple attack modes. This skill covers authorized password auditing, forensic password recovery, and security research applications. **IMPORTANT**: Password cracking must only be performed on hashes you are authorized to crack. Unauthorized password cracking is illegal. Always ensure proper authorization and legal compliance. ## Quick Start Basic password cracking: ```bash # Identify hash type hashcat --example-hashes | grep -i md5 # Dictionary attack on MD5 hash hashcat -m 0 -a 0 hashes.txt wordlist.txt # Show cracked passwords hashcat -m 0 hashes.txt --show # Benchmark system performance hashcat -b ``` ## Core Workflow ### Password Cracking Workflow Progress: [ ] 1. Verify authorization for password cracking [ ] 2. Identify hash algorithm type [ ] 3. Prepare hash file and wordlists [ ] 4. Select appropriate attack mode [ ] 5. Execute cracking operation [ ] 6. Analyze cracked passwords [ ] 7. Document password policy weaknesses [ ] 8. Securely delete hash files and results Work through each step systematically. Check off completed items. ### 1. Authorization Verification **CRITICAL**: Before any password cracking: - Confirm written authorization from data owner - Verify legal right to crack captured hashes - Understand data handling and retention requirements - Document chain of custody for forensic cases - Ensure secure stor...