-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathsubmit.php
165 lines (114 loc) · 6.08 KB
/
submit.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
<?php
require_once 'style.php';
require_once 'inc.php';
?>
<body>
<div class="row">
<div class="col-md-3"></div>
<div class="col-md-6">
<h1>Hashcrack 2 - the biggest one </h1>
<p>Look at <a href="joblist.php">previous jobs I've submitted.</a><p>
<p><a href="lookup.php">Look up results by resubmitting hashfile</a> - if something crashed, or you lost the bookmark. This won't rerun the job.<p>
<p>Look at some <a href="recipes.php">recipes</a> - some common job types, like 1-8 chars ASCII</p>
<p>Our rules and dicts available for <a href="downloads/"> download here </a><p>
<p>This is the 6 x NVIDIA 4090 rig, around 8 times as fast as the "old" hashcrack/crackathon. Everything has been migrated from the old one afaik.</p>
<p>A small project by [email protected]; please get in touch if you have problems or questions.<p>
<p><b>NB: Hashcat does not understand full /etc/shadow files - you just need the first two fields, or "cut -f1,2 -d':'"</b></p>
<p>You should not mix hash types in the same file; it will identify the type based on the first line it sees, and anything else will be ignored.</p>
<h2>Option 1- "I'm feeling lucky"<p> <!--'--></h2>
<p>Update: NTLM is assumed for that shape of hash now - if you have MD5, a. what year is it? b. you need to override manually with type 0.</p>
<form method="POST" action="upload.php" enctype="multipart/form-data">
<div class="upload-wrapper">
<span class="file-name">Pick a hash file for automated cracking...</span>
<label for="file-upload"><input class="btn" type="file" id="file-upload" name="uploadedFile"></label>
<input type="submit" name="uploadBtn" class="btn btn-primary" value="Go" />
</div>
</form>
<hr>
<h2>Option 1.1 - Full DESCRYPT - or - all NTLM up to 8 chars</h2>
I need to search all of descrypt space, I realise this might take best part of a week. (It is recommended to try option 1 before this, it might be a simple password.)
<p>Alternatively, this will cover all ASCII NTLM up to 8 chars, and will take about 10 hours to do so.
<form method="POST" action="expert.php" enctype="multipart/form-data">
<div class="upload-wrapper">
Pick a hash file for automated cracking...
<label for="file-upload"><input class="btn" type="file" id="file-upload" name="uploadedFile"></label>
Full descrypt mask: <label class="btn" for="mask"><input type="text" value="?a?a?a?a?a?a?a?a" name="mask"></label>
<input type="submit" name="uploadBtn" class="btn btn-primary" value="Go" />
<br>
</div>
</form>
<hr>
<h2>Option 2: No, I need fine-grained control</h2>
<form method="POST" action="expert.php" enctype="multipart/form-data">
<div class="upload-wrapper">
<p>
Pick a hash file for automated cracking...
<label for="file-upload"><input class="btn" type="file" id="file-upload" name="uploadedFile"></label>
<p>
Optional crib file, e.g. containing company name, main office, etc. If you choose this, use a short wordlist, and big rules, e.g. nsav2dive.rule.
<label for="file-upload"><input class="btn" type="file" id="file-upload" name="cribFile"></label>
<p>
Optional type override, e.g 1000, or 'ntlm' for NTLM: <label for="mask"><input type="text" name="type"></label>
<p><br>At most crib, OR one mask specified please : <br>
Optional mask, e.g. ?d?d?d?d?d: <label class="btn" for="mask"><input type="text" name="mask"></label><br>
OR dict plus left OR right masks :<br>
Optional left mask: <label for="mask"><input type="text" name="lmask"></label><br>
Optional right mask: <label for="mask"><input type="text" name="rmask"></label>
<BR><br>OR, specify dict and/or rule override if required</br>
Optional dict override: <select class="btn btn-default" name="dict">
<?php
require 'dict.php';
?>
</select>
<br>Optional rule override: <select class="btn btn-default" name="rules">
<?php
require 'rules.php';
?>
</select>
<hr>
<br><br>OR, specify left and right dicts<br>
Optional left dict:
<select class="btn btn-default" name="ldict">
<?php
require 'dict.php';
?>
</select>
Optional right dict:
<select class="btn btn-default" name="rdict">
<?php
require 'dict.php';
?>
</select>
<br>
</div>
<input type="submit" name="uploadBtn" value="Check" class="btn btn-success" >
<input type="submit" name="uploadBtn" value="Go" class="btn btn-primary" >
</form>
<?php
print "<h2>Queue</h2>";
print "<pre>Running : ".`tsp -l | grep running | wc -l`."</pre>";
print "<pre>Queued: ".`tsp -l | grep queued | wc -l`."</pre>";
print "<pre>Finished: ".`tsp -l | grep finished | wc -l`."</pre>";
print "<h2>GPU status</h2>";
// <pre>".`nvidia-smi --query-gpu=gpu_name,temperature.gpu,power.draw,utilization.gpu --format=csv`."</pre>";
//print "<p><a href=\"stats.php\">GPU temp / fan graph</a></p>";
print "<iframe border=none width=100% height=640 frameBorder=0 src=\"stats.php\">GPU temp / fan graph</iframe>";
?>
<p>
<center>
<img src="./smallbt.png" width=150><br>
A black traffic production
<p>
A tiny php front-end which runs <a href="https://github.com/blacktraffic/hashcrack">hashcrack</a> for you.
<p><p>
<i><font size=-2>"Numbers is hard and real and they never have feelings<br>
But you push too hard, even numbers got limits,<br>
Why did one straw break the camel's back?<br>
Here's the secret<br>
The million other straws underneath it<br>
It's all mathematics"</font></i>
</center>
</div>
</div>
</body>
</html>