Password Hacking Tools & Software

Probably our most popular resource here at Concise Courses: Password Cracking Software seems to be the in hot demand. We’ve updated our list for 2019.

10

TOOLS

how to crack a password

Password cracking or ‘password hacking’ as is it more commonly referred to is a cornerstone of Cybersecurity and security in general.

Password hacking software has evolved tremendously over the last few years but essentially it comes down to several thing: firstly, what systems are in place to prevent certain popular types of password cracking techniques (for example ‘captcha forms’ for brute force attacks), and secondly, what is the computing processing power of the hacker?

Typically password hacking involves a hacker brute forcing their way into a website admin panel (or login page for example) and bombarding the server with millions of variations to enter the system. That requires CPU. The faster the machine the faster the cracking process will be. Yes, a ‘clued-up’ Cybersecurity Professional will be able to prevent brute forcing but you’ll be amazed at the amount of vulnerable websites that can be forced into with the password hacking software that we’ve listed below.

Aircrack

Tool Category: Password Cracker Tools & Software

FREE

What is Aircrack-ng?
Aircrack-ng is a network hacking tool that consists of a packet sniffer, detector, WPA/WPA2-PSK cracker, WEP and an analysis tool for for 802.11 wireless LANs. This tool works with wireless network interface controller whose driver supports raw monitoring mode and can sniff 802.11a, 802.11b and 802.11g traffic. A new attack called “PTW” made by a team at Darmstadt University of Technology which decreases the number of initialization vectors (IVs) needed to decrypt a WEP key has been included in the aircracl-ng suite since the 0.9 release.

Is Aircrack-ng Free?
This tool is free and you can find many tutorials about it on the internet like on how to install aircrack-ng (https://www.aircrack-ng.org/install.html).

Does Aircrack-ng Work on all Operating Systems?
This tool can run on various platforms like FreeBSD, OSX, Wubdows, OpenBSD and Linux. The Linux version of this tool is packaged for OpenWrt and been ported to Maemo, Zaurus and Android platforms; and a proof of concept port has been made to iPhones.

What are the Typical Uses for Aircrack-ng?
This tool focuses on areas of Wifi Security which includes monitoring which captures packets and export the data to text files for processing by 3rd party tools. Replaying attacks, fake access points, deauthentication by using packet injection. Tesing of wifi cards and driver capabilities via capture and injection and cracking of WPA and WPA PSK (WPA 1 and WPA 2).

Crowbar

Tool Category: Password Cracker Tools & Software

FREE

What is Crowbar?
Crowbar is one of brute force attacking tool that provides you an opportunity to be in control what is submitted to a web server. It doesn’t try to identify a positive response like hitting a correct username or password combination but it rather tells you to give a “baseline” – the content of response and content of the baseline are then compared.

Is Crowbar Free?
Yes, Crowbar is currently free.

Does Crowbar Work on all Operating Systems?
Crowbar works with Linux operating systems.

What are the Typical Uses for Crowbar?
This brute forcing tool is commonly used during pentration tests and is developed to support protocols that are currently not supported by other brute forcing tools. Currently, this tool supports remote Desktop Protocol with NLA support, VNC key authentication, open VPN and SSH private key authenticaion.

John the Ripper

Tool Category: Password Cracker Tools & Software

FREE

What is John The Ripper?
John The Ripper is perhaps the best known password cracking (hacking) tools out there, and that’s why it will always be in our ‘concise top ten hacking tools’ category. Aside from having the best possible name, we love John, as it is affectionately known, because simply said, it works and is highly effective. John The Ripper is, like Metasploit, also part of the Rapid7 family of pentesting/ hacking tools.

How do Password Crackers Work?
In cryptanalysis, (which is the study of cryptographic systems in order to attempt to understand how it operates, and, as hackers, we’ll try to see if there are any vulnerabilities that will allow them to be broken, with or without the hash/ password key). Password cracking is the process of recovering or hacking passwords from data that have been stored in or has been transmitted by a computer system or within a network. One of the most common types of password hacking is known as a ‘brute-force attack.’ which, simply said, is the process in which a computer system guesses for the correct by cross-checking against an available cryptographic hash of the password. If the brute force attack is against clear-text words then the process derives from a ‘dictionary attack’. If the password is guessed using password hashes (which is faster), then the used process would be a ‘rainbow’ table.

If you work in Cyber Security, or are looking to get started in the profession, then it is ‘a must’ that you learn certain aspects of cryptography. We’d therefore strongly suggest that you learn, and try to crack, offline passwords using John The Ripper.

How does John The Ripper compare to THC Hydra?
THC Hydra, or simply ‘Hydra’, is another very popular password hacking tool that is often referred to in the same context as John The Ripper. The easiest way to describe the difference between John The Ripper (JTR) and THC Hydra is that JTR is an offline password cracker whilst Hydra is an online password cracker.

Is John The Ripper Free?
Both. There is a very popular free version of John The Ripper, and also a ‘pro’ version. John the Ripper commerical version is used by penetration testers that are interested in password cracking specific operating systems. The commercial version optimized for performance and speed. For the average user John The Ripper ‘open-source’ will work great, for the real hard-core user we’d certainly recommend the Pro Version, available from Rapid7.

Does John The Ripper Work on all Operating Systems?
John The Ripper was originally developed for Unix operating systems but now runs on various platforms 11 of which are architecture-specific versions of DOS, Unix, BeOS, Win32 and OpenVMS.

What are Typical Uses for John The Ripper?
John the Ripper is a fast password cracker. Period. In fact, you can consider John The Ripper as ‘the definitive’ password hacking tool!

In Summary
In summary, this extremely popular password cracking software tool is a behemoth within its’ category.

This tool now works on, literally, every single platform you can think of.

Users of this software love it, primarily for two specific reasons; firstly, because you can combine it with other password crackers, and secondly, because it can autodetect password hash types through its customizable cracking functionality.

This tool can easily be executed against various encrypted password formats including (but not limited to) several crypt password hash types most commonly found on various Unix versions (such as DES, MD5, or Blowfish, Kerberos AFS etc).

Like other tools such as Metasploit and Nmap, John The Ripper (JTR) can have its performance enhanced by adding on extra modules.

L0phtCrack

Tool Category: Password Cracker Tools & Software

FREE

What is L0phtCrack?
L0phtCrack is a recovery and password auditing tool originally created by Mudge. It tries to crack Windows passwords from obtained hashes from stand-alone Windows workstation, primary domain controllers, networked servers or Active Directory. It can sometimes sniff hashes off the wire. This tool also have several methods of generating password guesses.

Is L0phtCrack Free?
No, 3 versions of L0phtCrack: Professional, Administrator and Consultant are available for purchase.

Does L0phtCrack Work on all Operating Systems?
No, It only works for Microsoft Windows.

What are the Typical Uses for L0phtCrack?
L0phtCrack is used to recover lost Microsoft Windows passwords or to test someome’s password strength. It uses brute force, rainbow tables, hybrid and dictionary attacks. Even if this one of the tools of choice, crackers’ use old versions because of its high availability and low price.

Medusa

Tool Category: Password Cracker Tools & Software

FREE

What is Medusa?
Medusa is created to be a massively parallel, modular, speedy and login brute forcer. The aim is to support a lot of services that will allow remote authentication. Key features of this tool includes thread-based parallel testing – Brute force testing can be performed against multiple hosts, passwords or users. Flexible user input – Target information can be specified in different ways. One example is that for each item, it can be either a single entry or file containing multiple entries and Modular design – Every independent mod file exists in each service mod file. This means that no modifications are needed to the core application in order to extend the list of supported services for brute-forcing.

Is Medusa Free?
Yes, Medusa is free to use.

Does Medusa Work on all Operating Systems?
Medusa works on Linux and MAC OS X operating systems.

What are the Typical Uses for Medusa?
Just like THC Hydra, this tool focuses on cracking passwords by brute forcce attack. This tool can perform rapid attacks against large number of protocols that includes telnet, http, https, databases and smb.

ophcrack

Tool Category: Password Cracker Tools & Software

FREE

What is ophcrack?
Ophcrack is a rainbow-table based password cracker. This tool can import hashes from different formats included dumping directly from the SAM files of Windows. Some Rainbow tables are free to download but if you want larger ones, you can buy it from Objectif Sécurité.

Is ophcrack Free?
Yes!

Does ophcrack Work on all Operating Systems?
This tool works on Linux, Microsoft Windows and MAC OS X.

What are the Typical Uses for ophcrack?
Primary use of this tool is for password discovery. It can fork out simple passwords within minutes. Buying additional rainbow tables will enable you to crack complex passwords.

RainbowCrack

Tool Category: Password Cracker Tools & Software

FREE

What is RainbowCrack?
RainbowCrack is a hash cracker tool that makes use of a large-scale time memory trade off. A common brute force cracker tries every possible plaintext one by one which is time consuming for complex passwords but this tool uses a time memory trade off to do an advance cracking time computation and store results in “rainbow tables”. Password crackers take a long time to precompute tables but this tool is hundred of times faster than a brute force once it finishes the precomputation.

Is RainbowCrack Free?
Yes. RainbowCrack is free to use.

Does RainbowCrack Work on all Operating Systems?
It works on Linux, Microsoft Windows and MAC OS X (You should have mono or CrossOver for this one).

What are the Typical Uses for RainbowCrack?
The use of this tool is to crack hashes with rainbow tables that makes password cracking easier.

SolarWinds

Tool Category: Password Cracker Tools & Software

FREE

What is SolarWinds?
SolarWinds Firewall Security Manager (FSM) is a great solution for organizations and companies who need reporting and expert management on their most critical security devices. Set-up and configuration of this product is pretty straightforward and multi clients can be deployed to allow multiple administrators to access the system.

Is SolarWinds Free?
No. SolarWinds is a paid product offered by an excellent and well-respected company.

Does SolarWinds Work on all Operating Systems?
SolarWinds works on Windows operating systems.

What are the Typical Uses for SolarWinds?
Uses of this tool includes network discovery scanners, router password decryption, SNMP brute force cracker and TCP connection reset program.

THC Hydra

Tool Category: Password Cracker Tools & Software

FREE

What is THC Hydra?
THC Hydra is a password cracking tool that can perform very fast dictionary attacks against more than fifty protocols. It is a fast and stable Network Login Hacking Tool which uses dictionary or brute-force attacks to try various password and login combinations against a login page.

Is THC Hydra free?
Yes! THC Hydra is free. This tool is a proof of concept code giving researchers and security consultants the possibility to know how easy it would be to gain unauthorized access from remote to a system.

Does THC Hydra Work on all Operating Systems?
Hydra was tested to compile cleanly on Linux, Windows/Cygwin, Solaris, FreeBSD/OpenBSD, QNX (Blackberry 10) and OSX.

What are the Typical uses for THC Hydra?
Hydra is used as a parallelized login cracker which supports numerous protocols to attack. New modules are easy to add. This tool shows how easy it would be to gain unauthorized access to a system remotely.

Wfuzz

Tool Category: Password Cracker Tools & Software

FREE

What is Wfuzz?
Wfuzz is a hacking tool use created to brute force Web Applications. Some of the features of this tool includes multiple Injection points capability with multiple dictionaries, output to HTML, recursion (When doing directory bruteforce), colored output, post, headers and authentication data brute forcing, cookies fuzzing, time delays between requests, SOCK support, authentication support (NTLM, Basic), proxy support, payload combinations with iterators, HEAD scan (faster for resource discovery), brute force HTTP methods, multiple proxy support (each request through a different proxy) and hide results by return code, word numbers, line numbers, regex.

and a whole lot more…

Is Wfuzz Free?
Yes! Wfuzz is free.

Does Wfuzz Work on all Operating Systems?
It works on Linux, Windows and MAC OS X operating systems.

What are the Typical Uses for Wfuzz?
This tool is use to brute force Web Applications and can be used to find resources not linked (servlets, directories, scripts, etc.), POST parameters for various injections like SQL, LDAP, XSS, form parameters bruteforcing (username/password), fuzzing and a lot more.

This Post Has 74 Comments

  1. How do I download WFUZZ pleaase!

    1. Go here, then place on your (Linux) desktop and change permissions and execute. The code is likely python.

  2. What do you recommend for password cracking for websites like facebook and twitter

    1. Not sure if I do – if it were me and I had permission to do it, I’d set up a dummy FB page and send the target to sign up and when the correct password was entered they’d be sent an error page and then to the correct FB page to login. Classic, but effective.

    2. Hey can you help me

    3. Jail

  3. Is there a online password cracker here?

    1. You mean an automated one online that you point to a target? If so, no – can’t think of any.

      1. I want to hack into someone’s snap chat account

        1. Why? What has that person done to you! Hacking a Snapchat password would be a dangerous thing to do; I’m assuming you are referring to this in terms of research?

  4. I need to recover the password for a MacOSx dmg. I know which possible characters I used when I generated the password but I don’t which exactly are in there. Would any of the above tools help?

    1. Good question. I’m not sure – but I’ve posted your comment in case it does someone does have the answer. Thanks!

  5. Would any of the above software’s be able to figure out the password to log in to my bank account (online banking)? I know the username and can only remember half of the password. (Long story short, it was a joint account, my husband died, not from this country, having issues dealing with the bank for 3 months now, etc.). If not, do you know any at all?

    1. I’d say no. Firstly what you are trying to do is illegal and will get you into a lot of trouble if caught. Just contact the bank and ask them directly? Surely the loss of your husband (sorry to hear that) will facilitate access to the bank account.

      1. What do you recommend to hack Instagram?

        1. A password permutation generator would be the best approach probably. When it comes to “Hacking Instagram” you’re of course referring doing so for educational purposes with their permission?

  6. I want to hack Facebook what software do I need?

    1. The simple answer is to not Hack Facebook. Don’t get on their radar.

    2. First of all I wanna say you no! Don’t do that cuz its not a good idea if you are not a hacking student.
      Secondly, its not legal. So don’t.
      Thirdly, if you in search of Facebook cracking software than you should wrote in Google that you want a Facebook cracking software particularly with description.

      You can use truthSpy, keylogger as Facebook cracking software or you can do phissing attack, and many more software or methods you can get from google.

      1. Thank you, Sumana for sharing that. As ever – this site is designed to educate to defend and we endorse no offensive hacking at all!

    1. Sure, of course you can. It will take time and dedication.

      1. Thanks sir for the good reply but i also need that too please. Am dedicated because i like that.

  7. If I don’t know the e-mail which tool you suggest me to use?

    1. Then email enumeration is your goal. Discover similar email structures. Is this for a company account? Of course, you’d only do this under a testing environment to demonstrate how easy it can be to hack someone’s email account.

      1. A pleasant morning sir, I am currently taking BSIT in my University right now. What can you recommend for me to begin with to learn defensive hacking, I want to be ahead on our class. Thank you.

  8. How do I hack my wife’s account?

    1. Patch it up with her – don’t hack her account. If you want to hack your wife’s account there sounds like there’s a lot of distrust. Gaining authorized access is not recommended. Sorry, can’t help you with that.

  9. Any Credit card hack tools?

  10. What Software will work perfectly for Window 7? I am seeking tools to mainly crack Wifi Passwords

  11. Hi, I just need to read a recovery email address from an email provider, which is half hidden under dots, when I click password forgotten. Complex situation but the reason is my partner recently died and I would like to retrieve pictures he has stored online, which I believe are on that email. Please, please get in touch. I am happy to explain more. I even have a bunch of his passwords because they were saved on our laptop, but that one in particular was not saved recently, so not on the laptop.

  12. Please i have liked your answers and i admire sir to be like you. i want to become a computer wizard but i have failed to find someone to help me. i just have my laptop but i don’t know how to do it. Can i get your help sir and teach me some tips how to put my laptop in use?

    1. Thank you but I am by no means a “wizard”!

      Dedication is all you need. Honestly – that’s all you need.

  13. I want to crack some emails can you tell the online sites to crack it

    1. Not sure but be careful. Always do what you do with permission and for research.

  14. Hope this app works better than the other tools I’ve used.

  15. I have an old email account, unfortunately I forgot my password sometime back.

    I had it set up where it would send an SMS message to my phone to change the password but I no longer have the phone and Yahoo! Any help you could give me would be greatly appreciated…

    1. Hi Kurt – not sure that I can help. If you lost the phone then I’m not sure how you’d be able to see an SMS Text ID that came out of it. Sorry that I can’t help.

  16. I knew username but no password .. What can I do here ..I have no number also

    1. That’s good because at least you have half the battle. Why don’t you try a password cool like cupp.py to guess password combinations?

  17. I forgot my new FB password.How can I will get my new password .Please help me . I know the olp password only.

    1. Have you tried contacting Facebook to reset your password?

  18. Hello I lost my password Snapchat (I was hacked) but none of his software help me I need help.

    1. Trying to hack Snapchat is not a sensible idea. Why not just do a password reset?

  19. I cannot sign in to my Instagram acc. already tried to reset password but failed. Can somebody help me pls? I’d really appreciate it

  20. I want msp (MovieStarPlanet) password cracker >:(

  21. I forget my VBA project password. How I recover it?

  22. What is a good password hacking program for Folder Lock 7? DO NOT NEED THE MASTER PASSWORD. Need to crack a folder in a folder password that I forgot. Any suggestions.

  23. Can yot teach me hacking free..i dont know any thing about hacking but am always eagar learning…teach me please

    1. Hi Muiz – the Internet is rammed full of useful and practical information, tutorials and advice.

  24. R u coaching in ethical hacking i want learning the course would u want coach in free any tips

    1. I’m not but there are plenty of folk out there that I am sure will add resources where you can learn to hack for free!

  25. I do not know the password for one of the IP Cameras on this domain its user name is root and it is not the default or normal passwords we would us of course I know the IP. Will one of these hacking programs work?

  26. Can anyone send me the address where I can download this software?

  27. How can I crack a password?

    1. Good question! There’s no simple answer. There are a million different ways to crack passwords.

  28. My insta account got hacked, any idea or app how can i get it back?

  29. My friend forgot her yahoo password, what software can she use to get her account back ?

    1. There are no “magic software that can “hack bank accounts”. If you are a researcher you ought to look for vulnerabilities and learn how to find and fix bugs.

  30. How can I create a password crack tool by myself, can you give any suggestion on how to do that?

    1. I would suggest you learn a language like Python to scan and brute force.

  31. Buon giorno,
    Sto cercando uno strumento che mi permetta di cracker la psw admin di un server online per valutarne la vulnerabilità, quale tra questi mi consigliereste?

  32. Hello, pls is there a way to crack a password through email lists? Like loading some email leads in a cracking tools to crack their passwords. Is that possible? Is there any cracking software for that? Thx

    1. Yes of course. The tool you want to take a look at is cupp.py and create your own password lists. With regards to “email lists” that is only, possibly, helpful for enumeration and usernames for your target.

  33. Hi, I’m locked out of my iPad that has alphanumerics and numerals what could I use to get in?

  34. Hello sir, i have a flk file whihc is a 100 gb file created by folder lock software v7.1.8 which i created back in 2013, unfortunately i dont remmember my password, is there any way to recover my files or password for it?
    Thanks in advance

  35. Please how can I crack ASC timetable generator to full version

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.