It is a free Windows password cracker based on rainbow tables. It is a very efficient implementation of rainbow tables done by the inventors of the method. It comes with a Graphical User Interface and runs on multiple platforms. See some features of Ophcrack password cracking tools. The uploaded version of Ophcrack compiled for Windows 64-bit platforms. This version can preload tables using the whole RAM available instead of only 2GB on 32-bit platforms.
Download the latest Ophcrack version from sourceforge, the open source software storage.
The RainbowCrack password cracking tolls is a general propose implementation of Philippe Oechslin’s faster time-memory trade-off technique. It crack hashes with rainbow tables. RainbowCrack uses time-memory tradeoff algorithm to crack hashes. It differs from brute force hash crackers.
A brute force hash cracker generate all possible plaintexts and compute the corresponding hashes on the fly, then compare the hashes with the hash to be cracked. Once a match is found, the plaintext is found. If all possible plaintexts are tested and no match is found, the plaintext is not found. With this type of hash cracking, all intermediate computation results are discarded.
Download the latest version of RainbowCrack password cracking tools from project-rainbowcrack website.
Hashcat is the world’s fastest CPU-based password recovery tool. While it’s not as fast as its GPU counterpart oclHashcat, large lists can be easily split in half with a good dictionary and a bit of knowledge of the command switches.
Hashcat was written somewhere in the middle of 2009. Yes, there were already close-to-perfect working tools supporting rule-based attacks like “PasswordsPro”, “John The Ripper”. However for some unknown reason, both of them did not support multi-threading. That was the only reason to write Hashcat: To make use of the multiple cores of modern CPUs.
Download the latest version HashCat from oclhashcat website.
4. Cain & Abel
Is a password recovery tool for Microsoft Operating Systems. It allows easy recovery of various kind of passwords by sniffing the network, cracking encrypted passwords using Dictionary, Brute-Force and Cryptanalysis attacks, recording VoIP conversations, decoding scrambled passwords.
It also help you for recovering wireless network keys, revealing password boxes, uncovering cached passwords and analyzing routing protocols. The program does not exploit any software vulnerabilities or bugs that could not be fixed with little effort. It covers some security aspects/weakness present in protocol’s standards, authentication methods and caching mechanisms; its main purpose is the simplified recovery of passwords and credentials from various sources, however it also ships some “non standard” utilities for Microsoft Windows users.
Download the latest version of Cain and Abel from oxit website which crate and support this software.
5. Wfuzz Password Cracking Tools
Time for special password cracking tools for web applications. The Wfuzz password cracking tools is a software designed for brute forcing Web Applications, it can be used for finding resources not linked (directories, servlets, scripts, etc), bruteforce GET and POST parameters for checking different kind of injections (SQL, XSS, LDAP,etc), bruteforce Forms parameters (User/Password), Fuzzing,etc. See some features below and read full details at edge-security website.
Download the latest version from edge-security website.
6. Brutus Password Cracking Tools
The Brutus is also a good password cracking tools for web application but it is not updated for many years. You might still need as web application password cracker. Brutus was one of the most popular remote online password cracking tools. It claims to be the fastest and most flexible password cracking tool. This tool is free and is only available for Windows systems. It was released back in October 2000.
Brutus version AET2 is the current release and includes the following authentication types :
The current release includes the following functionality :
If you would like to use this old and out of date tools, download from hoobie website.
7. John the Ripper
The John the Ripper is a fast opensource password cracking tools, currently available for many flavors of Unix, Windows, DOS, BeOS, and OpenVMS. Its primary purpose is to detect weak Unix passwords. Besides several crypt(3) password hash types most commonly found on various Unix systems, supported out of the box are Windows LM hashes, plus lots of other hashes and ciphers in the community-enhanced version.
Download John the Ripper from openwall website, the place to bringing security into open environment.
8. THC Hydra
The THC-Hydra is a very fast network logon cracker which support many different services. When you need to brute force crack a remote authentication service, Hydra is often the tool of choice. It can perform rapid dictionary attacks against more then 30 protocols, including telnet, ftp, http, https, smb, several databases, and much more.
Download the THC Hydra from THC website and see feature sets and services coverage also.
The L0phtCrack Password Cracking Tools is an alternative to OphCrack. It attempts to crack Windows password from hashes. For cracking passwords, it uses Windows workstations, network servers, primary domain controllers, and Active Directory. It also uses dictionary and brute force attacking for generating and guessing passwords.
Download the latest version from l0phtcrack website.
The aircrack-ng is an 802.11 WEP and WPA-PSK keys cracking program that can recover keys once enough data packets have been captured. It implements the standard FMS attack along with some optimizations like KoreK attacks, as well as the PTW attack, thus making the attack much faster compared to other WEP cracking tools.
In fact, Aircrack-ng is a set of tools for auditing wireless networks. To secure a Wireless network against Wireless hacking read the article “5 Steps to Secure your home Wireless Network“.
Download the Aircrack-ng from aircrack-ng website, where you can find more information about this Wireless Password Cracking Tools. You might need to read “5 ways to Hack Wireless Network” article that is a good way to secure your Wireless Network.
The Medusa password Cracking tool is intended to be a speedy, massively parallel, modular, login brute-forcer. The goal is to support as many services which allow remote authentication as possible. The author considers following items as some of the key features of this application:
Download the latest Medusa tools from foofus website which support the fgdump tool for mass password Auditing of Windows Systems. It is also a best cracking tools.
Conclusion For Cracking Tools
These are the most popular tools that hackers are using for cracking password hashes and codes of web applications and operating systems. I’m sure that there are many powerful password cracking tools that I miss to bring the list, so tell us the name please in order to complete this list.
If you need more information about such a tools, read the password cracking section of Certified Ethical Hacking (CEH) from ec-council academy. And the post “Certification Road-map for Information Security” for security lovers.