Password Attacks
11 tools indexed
Password cracking and credential attack tools including hash crackers, brute-force utilities, wordlist generators, and hash identification tools. Used in penetration testing to evaluate password policies and recover credentials from captured hashes.
John the Ripper
Fast password cracker. Supports hundreds of hash types and ciphers. CPU and GPU modes.
Hashcat
World's fastest password recovery tool. GPU-accelerated with support for 300+ hash types.
THC Hydra
Fast online password brute-forcer. Supports 50+ protocols including SSH, FTP, HTTP, SMB, MySQL.
Medusa
Speedy, parallel, modular brute-forcer. Supports HTTP, MySQL, SMB, SSH, Telnet, and more.
CeWL
Custom wordlist generator. Spiders a target site and builds password lists from scraped words.
SecLists
The security tester's companion. Huge collection of wordlists — usernames, passwords, URLs, fuzzing payloads, shells.
Mimikatz
Extract plaintext passwords, hashes, PIN codes, and Kerberos tickets from Windows memory.
LaZagne
Password recovery tool. Retrieves stored passwords from browsers, WiFi, databases, sysadmin tools, and more.
Kerbrute
Tool to quickly bruteforce and enumerate valid Active Directory accounts through Kerberos pre-authentication.
Ophcrack
Windows password cracker based on rainbow tables — cracks LM and NTLM hashes via time-memory tradeoff.
Name-That-Hash
Instantly identify hash types from unknown hashes — supports 300+ hash formats with confidence ratings.