Project 20: Cracking Linux Password Hashes with Hashcat 10 Points

Use the grep command to extract the line from /etc/shadow file that contains the user jose and send the output to the file crack1.hash.

In a Terminal window, execute these commands:
grep jose /etc/shadow > crack1.hash
Edit the Hash File

Using the nano text editor, clean the hashfile of unneeded text.

In a Terminal window, execute these commands:

nano crack1.hash
In the nano text editor, carefully delete the username jose and the colon after it, and all the text at the end of the file, including all the colons, leaving only the hash. Since the hash is a long string, it may not fully display on the screen.

Screenshots show striked out text to be deleted.

Press Ctrl+X, Y, Enter to save the file.

In a Terminal window, execute these commands:

Explanation of hashcat options:

• 
  Unix type 6 password hashes (-m 1800)
  
• 
  Using a dictionary attack (-a 0) ****Note – this is a zero****
  
• 
  Putting output (-o) in the file found1.txt
  
• 
  Removing each hash (--remove)
  
• 
  Getting hashes from crack1.hash
  
• 
  Using the dictionary /usr/share/wordlists/nmap.lst
  

Use the cat command to view the hash and the password.

Make sure the Terminal window is visible, showing the cracked password of "password".

Click on the host machine's desktop, outside the virtual machine to make the host machine's desktop active.

Press the PrintScrn key to copy the whole desktop to the clipboard.

YOU MUST SUBMIT A FULL-SCREEN IMAGE FOR FULL CREDIT.

Open Paint and paste in the captured image. Save it as as a JPEG, with the filename "Your Name Project 20.jpg".

Email the JPEG image to: wagnerju@cod.edu with a subject line of "2640: Project 20 From Your Name", replacing Your Name with your own first and last name. Send a CC to yourself.

http://hashcat.net/hashcat/