GoCrack: FireEye claims that every sysadmin need help enforcing enterprise password generation rules. So the security company released an open-source tool to check passwords through your computer's GPU.
The GoCrack tool (there is in GitHub) realizes the cracking tasks with privilege management, so password tests don't fall into the wrong hands.
So only those who perform the tests or those who are licensed by the system or application manager can see the contents of a cracking work.
“Modifications to a job, viewing cracked passwords, downloading a archivetasks and other sensitive actions are logged and available for review by administrators only," the company says on its blog.
Crack engine dictionaries, rules for characters, and more are available to other users, but only the administrator can see the results or process the application.
GoCrack uses the hashcat v3.6 or a later version and does not need an external server that has a database. The application supports LDAP or back-end authentication.
The server component of the cracker works on any Linux server with Docker and NVIDIA Docker that allows GoCrack to run in a container with full access to the server's GPU.
The company's future development plans include MySQL and PostgreSQP database support, UI support for file processing, auto-termination, and extensive hashcat settings.