This repository contains a collection of Hashcat rules, masks, and wordlists that can be used for password cracking. The rules and masks can be used to generate custom password lists, while the wordlists provide a starting point for password cracking.
At White Knight Labs, we believe that password cracking is an essential part of a comprehensive security assessment. By identifying weak passwords, we can help organizations improve their overall security posture and reduce the risk of a successful cyber attack.
We are posting this repository to help the cybersecurity community improve their password cracking techniques and increase their understanding of password security. We hope that these resources will be useful to students, researchers, and other professionals in the industry.
The Hashcat rules, masks, and wordlists in this repository have been developed and tested by White Knight Labs as part of our password auditing and cracking services. If you're interested in learning more about our password cracking services, please visit our website at https://whiteknightlabs.com/password-audit-service/.
We believe that password cracking is an essential part of a comprehensive security assessment, and we are committed to helping organizations improve their security posture and reduce the risk of a successful cyber attack.
Disclaimer: The Hashcat rules, masks, and wordlists in this repository are provided for educational and research purposes only. The use of these resources for any unauthorized or illegal activity is strictly prohibited. White Knight Labs does not condone or support any illegal or unethical use of these resources, and is not responsible for any damage, loss, or legal action resulting from their use. By using these resources, you agree to indemnify and hold harmless White Knight Labs and its employees from any and all claims, damages, or expenses arising from your use of these resources.
The rules come from a combination of sources:
- https://github.com/hashcat/hashcat/tree/master/rules (Dive)
- https://github.com/NotSoSecure/password_cracking_rules (OneRuleToRuleThemAll)
- https://github.com/rarecoil/pantagrule (Pantagrule)
- https://github.com/kaonashi-passwords/Kaonashi/tree/master/rules (Haku)
If we have missed adding someone in credit, feel free to send a note or open a github issue and we will sort it out.
Rules taken from other ruleset will follow respective license. Additional custom rules are added besides those mentioned above, these additional rules are MIT Licensed.