Password cracking is an integral part of digital forensics and pentesting. Keeping that in mind, we have prepared a list of the top 10 best password cracking tools that are widely used by ethical hackers and cybersecurity experts. These tools–including the likes of Aircrack, John the Ripper, and THC Hydra–use different algorithms and protocols to crack the passwords on a Windows, Linux, and OS X system.
I downloaded the 'John the Ripper 1.8.0 (sources, tar.gz, 5.2 MB) and its signature' file. Also when trying to follow your instructions on '1a) Open TextWrangler Look for the file /John/src/makefile and open it' there are 4 different makefile, and non of them contained what i was looking for running os X 10.11 beta. Reply Delete.
What is password cracking?
In the field of cybersecurity and cryptography, password cracking plays a very major role. It’s basically the process of recovering passwords to breach (or restore) the security of a computer system. You can easily relate it to repeatedly guessing your phone’s unlock pattern or pin.
So, why do we need to learn about password cracking and the tools used to do so? The purpose of password cracking revolves around recovering the forgotten passwords of our online accounts, computers, and smartphones. Password cracking is also used by system administrators as a preventive measure. They keep checking them on the regular basis to look for the weak links.
Talking about the process of password cracking, most methods involve the use of a computer that generates a vast set of password candidates. A desktop computer tests more than hundreds of millions of passwords per second. A password cracking tool performs this task easily and checks these candidates to reveal the actual password.
The time needed to crack a password is proportional to the length and strength of that password. That’s why users are advised to use complex passwords that are harder to guess. The password cracking speed of a tool also depends heavily on the cryptographic function that’s used to generate password hashes. Thus, a potent hashing function like bcrypt is preferred over the likes of SHA and MD5.
Types of password cracking attacks:
Here’s I’ll be listing various types of password cracking attacks that are generally used by attackers:
Dictionary attack: This attack uses a file that contains a list of words that are found in the dictionary. This mode matches different combinations of those words to crack your device open.
Brute force attack: Apart from the dictionary words, brute force attack makes use of non-dictionary words too.
Rainbow table attack: This attack comes along with pre-computed hashes. Thus, this method is faster.
There are lots of other password cracking techniques like phishing, spidering, social engineering, shoulder surfing etc. Soon, I’ll be discussing them in detail in another article. So, let’s get started with our list of the best password cracking tools of 2016.
Best Password Cracking Tools Of 2016:
Disclaimer: Fossbytes is publishing this list just for educational purposes. We don’t promote malicious and unethical practices.
John the Ripper | Best Password Cracking Tools Of 2016
John the Ripper is one of the most popular password cracking tools available around. This free password cracking tool is chiefly written in C programming language. Encompassing a customizable password cracker, John the Ripper comes as a combination of many password crackers into one suite.
Its ability to autodetect password hashtypes, makes it a preferred choice of ethical hackers to ensure security. A pro version of this tool is also available, offering better features and more effectiveness. Just like the popular hacking tool Metasploit, John also belongs to the Raspid7 family of security tools.
Supported platforms: John the Ripper is available for all major platforms, including Linux, Windows, DOS, and OS X.
Download link: John the Ripper
Love Hacking And Pentesting? Get Started Here
Aircrack-ng | Best Password Cracking Tools Of 2016
Aircrack-ng (ng stands for new generation) is one of the best password cracking tools that hackers use to bump their annoying neighbors off their own Wi-Fi. Note that just like John the Ripper, Aircrack-ng is not a single tool. Instead, it’s a complete software suite that’s used to play with Wi-Fi networks.
In this free suite, you get a tool named aircrack that hackers use to crack WPA or WEP passwords. After analyzing the encrypted password packets, aircrack uses its cracking algorithm to break the passwords.
Using the well know attack techniques like FMS, this password cracking tool makes your job easier. Recently, a new attack named “PTW” has been included in the suite, which reduces the number of initialization vectors to break a WEP key.
Supported platforms: Aircrack is available for Linux, OpenBSD, FreeBSD, OX X, Windows, Android
Download link: Aircrack-ng
RainbowCrack | Best Password Cracking Tools Of 2016
As the name suggests, RainbowCrack makes use of rainbow tables to crack password hashes. Using a large-scale time-memory trade-off, RainbowCrack performs an advance cracking time computation. According to your convenience, you are free to use the command line or graphical interface of RainbowCrack.
Once the pre-computation stage is completed, this top password cracking tool is about hundreds of times faster than a brute force attack. You also don’t need to prepare the rainbow tables yourselves. The developers have made different rainbow tables for LM, NTLM, MD5 and SHA1 available for free.
RainbowCrack’s GPU acceleration is another key feature that allows this free password cracking tool to offload the runtime computation to GPUs, reducing the cracking time even further.
Supported platforms: RainbowCrack is available for Windows and Linux
Download link:RainbowCrack
Cain and Abel | Best Password Cracking Tools Of 2016
This renowned password cracking tool is a dependable software to recover various types of passwords using multiple techniques. Cain and Able lets you easily perform Dictionary, Brute-Force, and Cryptoanalysis attacks to crack encrypted passwords.
This multi-purpose hacking tool also comes with the ability to sniff the networks, record VoIP conversations, recover network keys, decode scrambled passwords, and analyze routing protocols.
Cain and Abel has two components. While Cain is the frontend application to recover your passwords and perform sniffing, Able is a Windows NT service that performs the role of traffic scrambling.
Supported Platforms: Cain and Abel is available for Windows
Download link:Cain and Abel
THC Hydra | Best Password Cracking Tools Of 2016
Compared to other top password cracking tools, THC Hydra performs hacking attacks using numerous network protocols, including the likes of Asterisk, FTP, HTTP-Proxy, MYSQL, XMPP, Telnet, and more. Using these protocols, THC Hydra performs super fast brute-force and dictionary attacks against a login page.
This free-to-use tool helps the pentesters and security researchers to know how easy it would be to gain remote access to a system. This tool also lets you add new modules to increase the functionality. Via its GitHub page, you can also participate in the development process of THC Hydra.
Supported Platforms: THC Hydra is available for Windows, Linux, Solaris, FreeBSD, OS X
Download link: THC Hydra
Find Best Courses On Hacking And Pentesting Here
HashCat | Best Password Cracking Tools Of 2016
HashCat claims to be the fastest and most advanced password cracking software available. Released as a free and open source software, HashCat supports algorithm like MD4, MD5, Microsoft LM hashes, SHA-family, MySQL, Cisco PIX, and Unix Crypt formats.
This password cracking tool comes in both CPU-based and GPU-based versions, HashCat and oclHashcat/cudaHashcat, respectively. Using a well-documented GPU acceleration, many algorithms can be easily cracked using this tool.
Different types of attacks performed by this tool include brute force attack, combinator attack, fingerprint attack, dictionary attack, hybrid attack, mask attack, table-lookup attack, PRINCE attack, permutation attack etc.
Supported Platforms: HashCat is available for Windows, Linux, OS X
Download link:HashCat
Crowbar | Best Password Cracking Tools Of 2016
Crowbar is a brute forcing tool that’s widely popular in the pen testing scene. It gives you the control to decide what’s submitted to a web server. While most brute forcing tools use username and password to deploy SSH brute force, Crowbar makes use of SSH keys obtained during penetration tests.
This free tool is created to support the protocols that are rarely supported by other popular password cracking tools. Currently, Crowbar supports VNC key authentication, OpenVPN, SSP private key authentication, and Remote Desktop Protocol with NLA support.
Supported Platforms: Crowbar is available for Windows, Linux, OS X
Download link:Crowbar
OphCrack | Best Password Cracking Tools Of 2016
Just like RainbowCrack, OphCrack is another popular and free password cracking tool that uses rainbow tables to crack the password hashes. It’s widely used to crack Windows log-in passwords. Thanks to its ability to import and use hashes from multiple formats and sources, OphCrack is known to crack the passwords of a Windows computer in few minutes.
Available conveniently as a Live CD, a pentester can use it and leave no trace behind. For cracking Windows XP, Vista, and 7, one can also grab freely available rainbow tables. For professional use, larger tables are available for purchase.
Supported Platforms: OphCrack is available for Windows
Download link:OphCrack
L0phtCrack | Best Password Cracking Tools Of 2016
Just like OphCrack, L0phtCrack is known for easily cracking Windows passwords. Using a wide set of attacks like dictionary, hybrid, brute force, and rainbow tables, this password cracking tool can also be deemed useful in sniffing hashes.
It’s a great way to target Windows desktops, networked servers, Active Directory, and primary domain controllers. Its schedule routine audit functionality lets you perform scans at a convenient time.
Supported Platforms: L0phtCrack is available for Windows
Download link:L0phtCrack
DaveGrohl | Best Password Cracking Tools Of 2016
For Mac OS X, DaveGrohl is an open source password cracking tool that’s preferred by the Apple security experts. With a completely modern object-oriented codebase in Version 3.0, DaveGrohl has been made more useful for developers and users.
With the help of dictionary and incremental attacks, this tool lets you crack a password in minutes. Its distributed mode allows you to perform attacks using different computers and crack the same password hash for faster results.
Supported Platforms: DaveGrohl is available for OS X
Download link:DaveGrohl
Did you find this article helpful? Don’t forget to drop your feedback in the comments section below.
Bonus: Top 10 Best Hacking Tools | 2017 Edition
You’ve got a bunch of DVDs sitting around your house, but you can’t even remember when you last saw your DVD player, and your laptop doesn’t even have a disc drive anymore. It’s time to modernize your collection. Here, we’ll show you how to rip your DVDs to your computer using the swiss army knife of video conversion tools: Handbrake.
Step Zero: Install Handbrake and libdvdcss So You Can Decrypt DVDs
The main tool we’ll be using to rip DVDs is called Handbrake, which you can download here. Out of the box, Handbrake can rip any DVD that isn’t copy protected…but almost all DVDs you buy in the store are copy protected. Getting around this is a weirdly gray area legally, so applications like Handbrake can’t legally include the software needed to decrypt copy protected DVDs. You can, however, download it separately—as long as you’re just using this to watch a movie on your computer and not starting a bootlegging business, we promise we won’t tell on you.
We’ll be using a free DVD playback library called libdvdcss. This will let Handbrake read your encrypted DVDs and rip them to your computer. The process is a little different for Windows and Mac users, so we’ll go through each one individually. Note that you don’t have to do this every time you rip a DVD—once libdvdcss is installed, you can skip to Step One each time you rip a new disc.
How to Install libdvdcss on Windows
First, you’ll need to download libdvdcss to your computer. For 32-bit versions of Windows, download this version. 64-bit users should download this version. If you aren’t sure which version of Windows you have, check out this article.
Copy the .dll file to your Handbrake program folder. If you used the default installation settings, this should be in C:Program FilesHandbrake.
After this, Handbrake will be able to read your encrypted DVDs.
How to Install libdvdcss on macOS
Installing libdvdcss is a little more complicated on macOS, because El Capitan introduced a security feature called System Integrity Protection that won’t let you install libdvdcss without a little help. If you’re on Yosemite or older, you can download the libdvdcss package file here and double-click it to install it.
RELATED:How to Install Packages with Homebrew for OS X
However, if you’re on El Capitan or newer, we’re going to use a command line tool called Homebrew to get it. If you’re not familiar with Homebrew, check out our guide on how to install it here. Fortunately, it only takes a few Terminal commands to install Homebrew if you haven’t already. Once you’re done, come back here.
To install libdvdcss, press Command+Space and search for Terminal to launch a command line window. Then, type in brew install libdvdcss and hit enter.
Homebrew will download and install the libdvdcss library. Once you’re back at the command prompt, the library will be installed.
Once this is finished, Handbrake should be able to read all of your encrypted DVDs.
Step One: Open Your DVD in Handbrake
Once you’ve installed libdvdcss, it’s time to get ripping. Open Handbrake and choose your DVD drive from the sidebar that appears.
Handbrake will take a moment to scan the titles on your DVD. Wait until this process is finished. It should only take a moment. If libdvdcss wasn’t installed incorrectly, you’ll see an error saying that the disc can’t be read here instead.
Don’t be scared by Handbrake’s complex window—most of this should be pretty simple. Once your DVD is open, head to the “Title” dropdown box and choose which title you want to rip. By default, Handbrake will choose the movie, but if you want to rip any special features or deleted scenes, you can change the target you want to rip here. You can also change which chapters you want to rip, if you only want part of the movie.
Under Destination, click Browse to pick where you want to place the movie after you’ve ripped it.
Step Two: Choose Your Quality Preset
Next, you’ll need to decide the quality of your output file. The higher quality the movie, the more space it will take on your hard drive. If you’re technical, you can use the Picture, Video, and Audio tabs to adjust these settings, but most people only need to click one thing: a Preset.
Along the right side of the Handbrake window, you’ll see a selection of Presets (if you don’t see it, drag the corner of Handbrake’s window and expand it until you do). There are presets for nearly anything you could need: Apple TV, Android phones, PlayStation, and lots more. If you’re watching on your computer, use one of the “General” presets—“Fast” and “Very Fast” will be low quality but small in size, while “HQ” and “Super HQ” will have higher quality but take up more space.
If you’re ripping a DVD sold in the US, choose the 480p preset. European DVDs are usually 576p. Don’t choose larger presets like 720p or 1080p for DVDs—they won’t make your video look any better, they’ll just make the file bigger.
Step Three: Start Ripping!
Once you’ve chosen your Title and Preset, click Start Encode at the top of the window. Then, grab a snack.
You’ll see a progress bar along the bottom that will let you know how much time you have left in the rip. Higher quality rips will take longer, so you’ll want to let your computer run for a while.
Once the rip is done, you should be able to double-click on it to watch it! Or, if you’re using a movie library program like Plex, go ahead and add the movie to your library.
READ NEXT
› Why You Should Overclock Your RAM (It’s Easy!)
› How to Increase Your MacBook’s Storage
› How to Disable Swipe Typing on the iPhone’s Keyboard