most-used-passwords

Quick update to my previous post on password cracking. I’ve done a bit of optimizing for my setup and it’s now as follows:

  • Cracking the bcrypt hash list appears to be better using CPU rather than GPU
  • Two i7 quad-core CPUs – 8 threads each
  • One Windows and one Linux host
  • In order to utilize all 8 threads, need an 8 word wordlist, could be more but I want to test the top 8 and be done
  • Using the top 8 passwords from 2014
  • Testing one million hashes at a time on each rig
  • Update from Day 5
    • Hashcat on the Linux box seg faulted for some reason after 3 days… not reading the .pot file on restart although it is appending duplicates to the .pot file… weird
    • So restart it is on the Linux box

Day 1

count-day1

Day 2

day2-count

Day 3

day3-count

Day 5

count-day5