{"id":472,"date":"2015-08-16T18:34:07","date_gmt":"2015-08-16T15:34:07","guid":{"rendered":"https:\/\/furkansandal.com\/oclhashcat-ile-kaba-kuvvet-saldirilari-icin-mask-kullanimi\/"},"modified":"2015-08-16T18:34:07","modified_gmt":"2015-08-16T15:34:07","slug":"oclhashcat-ile-kaba-kuvvet-saldirilari-icin-mask-kullanimi","status":"publish","type":"post","link":"https:\/\/furkansandal.com\/oclhashcat-ile-kaba-kuvvet-saldirilari-icin-mask-kullanimi\/","title":{"rendered":"oclHashcat ile Kaba Kuvvet Sald\u0131r\u0131lar\u0131 i\u00e7in Mask Kullan\u0131m\u0131"},"content":{"rendered":"
\noclHashcat parola k\u0131rmak i\u00e7in GPU’nun g\u00fcc\u00fcnden yararlanan defacto bir ara\u00e7t\u0131r. Destekledi\u011fi(GPU i\u00e7in) 5 atak t\u00fcr\u00fc vard\u0131r. Bunlardan birisi olan Mask atak t\u00fcr\u00fc kaba kuvvet sald\u0131r\u0131lar\u0131n\u0131 daha verimli yapmak i\u00e7in kullan\u0131l\u0131r. Olas\u0131 t\u00fcm parolalar\u0131n hesapland\u0131\u011f\u0131 kaba kuvvet sald\u0131r\u0131lar\u0131nda parola basit dahi olsa 9 hane ve \u00fczeri oldu\u011funda s\u00fcre y\u0131llar alabilmektedir. Windows 7 \u00fczerinde \u00e7al\u0131\u015fan AMD Radeon 7970 HD grafik kart\u0131 i\u00e7in tam bir kaba kuvvet sald\u0131r\u0131s\u0131nda hane uzunlu\u011funa g\u00f6re ortalama s\u00fcreler a\u015fa\u011f\u0131daki gibidir.(Ortalama h\u0131z: 8000MH\/s (saniyede 8 milyar deneme))<\/p>\n\n\n\n\n\n\n\n\n\n
Parola uzunlu\u011funa g\u00f6re parola k\u0131rma s\u00fcreleri<\/strong><\/caption>\n
Uzunluk<\/th>\nS\u00fcre<\/th>\n<\/tr>\n<\/thead>\n
6 hane<\/td>\n1 dakika 32 saniye<\/td>\n<\/tr>\n
7 hane<\/td>\n2 saat 25 dakika<\/td>\n<\/tr>\n
8 hane<\/td>\n9 – 10 g\u00fcn aras\u0131<\/td>\n<\/tr>\n
9 hane<\/td>\n2 – 3 y\u0131l aras\u0131<\/td>\n<\/tr>\n
10 hane<\/td>\n10 y\u0131ldan fazla<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

\nMask atakta ise parolalar\u0131n olu\u015fturulma d\u00fczenleri tespit edilir ve sadece bu d\u00fczene g\u00f6re parolalar hesaplan\u0131r. \u00d6rne\u011fin, Bilgi987*! gibi bir parola i\u00e7in hashcat maskesi ?u?l?l?l?l?d?d?d?s?s \u015feklindedir.
\nu b\u00fcy\u00fck harfi(uppercase), l k\u00fc\u00e7\u00fck harfi(lowercase), d rakamlar\u0131(digit) ve s \u00f6zel karakterleri(special chars) ifade eder.\u00a0B\u00f6yle bir maske i\u00e7in s\u00fcre ise yakla\u015f\u0131k 30 dakikad\u0131r.<\/p>\n

\nRockyou, phpbb, Linkedin gibi yakla\u015f\u0131k 35 milyon s\u0131z\u0131nt\u0131 parola \u00fczerinde yap\u0131lan \u00e7al\u0131\u015fma, mask ata\u011f\u0131n \u00f6nemini ortaya koymaktad\u0131r. 35 milyon parolan\u0131n %50’si sadece 13 tane mask ile k\u0131r\u0131labilmektedir[kaynak]. Toplam mask say\u0131s\u0131 ise 260000 civar\u0131d\u0131r.<\/div>\n
\n<\/div>\n

\nBu maskeleri \u00e7\u0131kartmak i\u00e7in \u015fart olmasa dahi uygun bir s\u00f6zl\u00fc\u011fe(wordlist) ihtiya\u00e7 vard\u0131r. Bu yaz\u0131da yakla\u015f\u0131k 24000 parola i\u00e7eren T\u00fcrk\u00e7e bir s\u00f6zl\u00fck kullan\u0131lm\u0131\u015ft\u0131r.<\/p>\n

PACK, python ile yaz\u0131lm\u0131\u015f, parola analizi yapan bir ara\u00e7t\u0131r. Analiz etti\u011fi s\u00f6zl\u00fck i\u00e7in uzunluk ve maske ile ilgili istatistikler \u00e7\u0131kart\u0131r. Bu yaz\u0131ya konu olan \u00f6zelli\u011fi ise hashcat i\u00e7in mask listesi \u00e7\u0131kartabilmesidir.
PACK i\u00e7erisinde 4 tane ara\u00e7 bar\u0131nd\u0131r\u0131r: statsgen, maskgen, policygen ve rulegen.<\/p>\n\n\n\n
python statsgen.py sozluk.txt -o sozluk_stats.txt<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

\nile sozluk_stats.txt dosyas\u0131na \u00e7\u0131kt\u0131 al\u0131n\u0131r. Bu liste olduk\u00e7a uzun \u00e7\u0131kabilir. E\u011fer vakit s\u0131n\u0131rl\u0131ysa –hiderare<\/strong> se\u00e7ene\u011fi ile \u00e7ok az kar\u015f\u0131la\u015f\u0131lan maskeler ve istatistikleri dahil edilmeyebilir. Yada –simplemask<\/strong> se\u00e7ene\u011finde stringdigit, mixedalpha gibi filtreler uygulanarak maskeler azalt\u0131labilir.
\n\u00c7\u0131kt\u0131 olarak al\u0131nan sozluk_stats.txt dosyas\u0131 maskgen<\/strong>‘e input olarak verilir ve hashcat i\u00e7in hcmask dosyas\u0131 elde edilir.<\/p>\n\n\n\n
python maskgen.py sozluk_stats.txt -o sozluk.hcmask<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n


<\/strong>
\nStatsgen<\/strong> gibi burada da \u00e7e\u015fitli filtreler uygulanabilir: –minlength, –masklength, –targettime <\/strong>ve –pps<\/strong><\/p>\n

En az 9 haneli, en fazla 12 haneli parolalar i\u00e7in, saniyede 5 milyar deneme yapabilen bir makinede 3 saatte(3*60*60) k\u0131rmak i\u00e7in maskgen<\/strong> a\u015fa\u011f\u0131daki gibi kullan\u0131labilir.<\/p>\n\n\n\n
python maskgen.py sozluk_stats.txt –minlength 9 –maxlength 12 –pps 5000000000 –targettime 10800 -o sozluk.hcmask<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

\nSonu\u00e7:<\/p>\n\n\n\n
?d?d?d?d?d?d?d?d?d
?u?l?l?d?d?d?d?d?d
?d?d?d?d?d?d?d?d?d?d
?u?l?d?d?d?d?d?d?d
?u?l?l?l?l?d?d?d?d
?l?l?d?d?d?d?d?d?d
?d?d?d?d?d?d?d?d?l
?l?d?d?d?d?d?d?d?d
?u?l?d?d?d?d?d?d?s
?d?d?d?d?d?d?l?l?l
…<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

\nElde edilen sozluk.hcmask dosyas\u0131 ise direk olarak hashcatte kullan\u0131labilir.<\/p>\n\n\n\n
oclhashcat.exe -m 1000 -a 0 hash_listesi.txt \u00a0maskssozluk.hcmask<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

\nAyn\u0131 i\u015flem elde s\u00f6zl\u00fck olmasada her sat\u0131ra bir mask gelecek \u015fekilde elle olu\u015fturulabilir. Ancak iyi bir s\u00f6zl\u00fck ba\u015far\u0131 oran\u0131n\u0131 %20-30 civar\u0131nda art\u0131racakt\u0131r.<\/p>\n<\/div>\n

\nFurkan SANDAL<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

oclHashcat parola k\u0131rmak i\u00e7in GPU’nun g\u00fcc\u00fcnden yararlanan defacto bir ara\u00e7t\u0131r. Destekledi\u011fi(GPU i\u00e7in) 5 atak t\u00fcr\u00fc vard\u0131r. Bunlardan birisi olan Mask…<\/p>\n","protected":false},"author":1,"featured_media":469,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_mi_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","footnotes":""},"categories":[6,1,9,10,7,4],"tags":[],"aioseo_notices":[],"jetpack_featured_media_url":"https:\/\/i0.wp.com\/furkansandal.com\/wp-content\/uploads\/2015\/08\/ssh.jpg?fit=500%2C500&ssl=1","jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/p6BM7I-7C","amp_enabled":true,"_links":{"self":[{"href":"https:\/\/furkansandal.com\/wp-json\/wp\/v2\/posts\/472"}],"collection":[{"href":"https:\/\/furkansandal.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/furkansandal.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/furkansandal.com\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/furkansandal.com\/wp-json\/wp\/v2\/comments?post=472"}],"version-history":[{"count":0,"href":"https:\/\/furkansandal.com\/wp-json\/wp\/v2\/posts\/472\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/furkansandal.com\/wp-json\/wp\/v2\/media\/469"}],"wp:attachment":[{"href":"https:\/\/furkansandal.com\/wp-json\/wp\/v2\/media?parent=472"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/furkansandal.com\/wp-json\/wp\/v2\/categories?post=472"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/furkansandal.com\/wp-json\/wp\/v2\/tags?post=472"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}