Linux command
ophcrack 命令
文本
复制后可按需替换文件名、目录或参数。
常用示例
Crack passwords from a pwdump file
ophcrack -g -d [path/to/tables] -f [hashes.txt]
Crack with specific tables
ophcrack -g -d [path/to/tables] -t [xp_free_fast] -f [hashes.txt] -n [4]
Crack and save results
ophcrack -g -d [path/to/tables] -f [hashes.txt] -o [cracked.txt]
Enable bruteforce
ophcrack -g -B -d [path/to/tables] -f [hashes.txt]
Run in quiet mode
ophcrack -g -q -d [path/to/tables] -f [hashes.txt] -l [log.txt]
Launch GUI mode
ophcrack
说明
ophcrack is a Windows password cracker that uses rainbow tables to recover passwords from LM and NTLM hashes. It implements a time-memory trade-off technique, pre-computing hash chains that dramatically speed up the cracking process. The tool can crack Windows NT, 2000, XP, Vista, 7, 8, and 10 passwords. Free rainbow tables are available for common password patterns, with paid tables offering higher success rates. It can import hashes from pwdump files, SAM/SYSTEM registry files, or by dumping directly from local/remote Windows systems. Ophcrack provides both GUI and command-line interfaces. The GUI includes real-time graphs analyzing password strength distribution. A LiveCD version allows booting directly on a Windows machine to extract and crack passwords without installing software.
参数
- -g
- Disable GUI, run in command-line mode
- -d _DIR_
- Specify rainbow tables base directory
- -t _TABLES_
- Specify tables to use (table_name,start,end:...)
- -f _FILE_
- Load hashes from pwdump or session file
- -o _FILE_
- Write output in pwdump format
- -l _FILE_
- Log all output to file
- -n _NUM_
- Number of threads to use
- -a
- Disable audit mode (default)
- -A
- Enable audit mode
- -b
- Disable bruteforce
- -B
- Enable bruteforce (default)
- -c _FILE_
- Specify configuration file
- -e
- Do not display empty passwords
- -i
- Hide usernames in output
- -I
- Show usernames (default)
- -p _NUM_
- Preload level (0=none, 1=index, 2=index+end, 3=all)
- -q
- Quiet mode
- -r
- Start cracking immediately (GUI only)
- -s
- Disable session auto-saving
- -S _FILE_
- Session file for auto-saving progress
- -u
- Display statistics
- -D
- Display debugging information
- -h
- Show help
FAQ
What is the ophcrack command used for?
ophcrack is a Windows password cracker that uses rainbow tables to recover passwords from LM and NTLM hashes. It implements a time-memory trade-off technique, pre-computing hash chains that dramatically speed up the cracking process. The tool can crack Windows NT, 2000, XP, Vista, 7, 8, and 10 passwords. Free rainbow tables are available for common password patterns, with paid tables offering higher success rates. It can import hashes from pwdump files, SAM/SYSTEM registry files, or by dumping directly from local/remote Windows systems. Ophcrack provides both GUI and command-line interfaces. The GUI includes real-time graphs analyzing password strength distribution. A LiveCD version allows booting directly on a Windows machine to extract and crack passwords without installing software.
How do I run a basic ophcrack example?
Run `ophcrack -g -d [path/to/tables] -f [hashes.txt]` in a terminal, then adjust file names, paths, flags, or remote targets for your system.
What does -g do in ophcrack?
Disable GUI, run in command-line mode