I decided to write up some Hashcat projects for my students:
Cracking Linux Password Hashes with Hashcat
Cracking Windows Password Hashes with Hashcat
The results were impressive and easy to understand.
By default, Kali Linux uses Type 6 Crypt password hashes--salted, with 5000 rounds of SHA512.
It takes 20 seconds to crack four hashes like that, using a dictionary of only 500 words (a very small dictionary).
Windows 7, however, uses NT hashes--no salt, one round of MD4.
It takes 1.3 seconds to crack four NT hashes, using a dictionary of 500,000 words.
So Windows hashes are more than 10,000 times weaker than Linux hashes.
Posted 1:56 PM 6-16-13 by Sam Bowne
Source link: http://samsclass.info/123/proj10/comparing-hashes.htm
Cracking Linux Password Hashes with Hashcat
Cracking Windows Password Hashes with Hashcat
The results were impressive and easy to understand.
By default, Kali Linux uses Type 6 Crypt password hashes--salted, with 5000 rounds of SHA512.
It takes 20 seconds to crack four hashes like that, using a dictionary of only 500 words (a very small dictionary).
Windows 7, however, uses NT hashes--no salt, one round of MD4.
It takes 1.3 seconds to crack four NT hashes, using a dictionary of 500,000 words.
So Windows hashes are more than 10,000 times weaker than Linux hashes.
Posted 1:56 PM 6-16-13 by Sam Bowne
Source link: http://samsclass.info/123/proj10/comparing-hashes.htm