This second option is not recommended since it will not help resume partial progress in the future for hash cracking. You can delete it and start again or use the -remove flag each time to not store any. When using hashcat the cracked or partial is saved by default in a file hashcat.potfile. The -a flag represents the attack mode while the -m flag indicates what kind of hash you are trying to crack. Instead you should install hashcat on your host computer and use it to crack the password hashes. With that in mind the passwords we are cracking are designed to be crackable even in this case, but the author highly recommends not cracking them in a VM.
There is also a large drain on the performance of using hashcat in a virtual machine since it is a tool that uses the GPU of your computer which in the case of a VM is limited. Unlike John Hashcat is not installed by default on Kali Linux. So in a way we are recovering passwords, just in the sense that we never owned them to begin with. While technically it is a password recovery tool, we are using it to crack the password hashes of our target in the ethical hacking lab.
Hashcat is a “password recovery” tool, although I am not sure of this is an accepted legal defense against using it inappropriately.
0 kommentar(er)
