GoCrack: Η FireEye υποστηρίζει ότι κάθε sysadmin χρειάζεται βοήθεια για την επιβολή κανόνων δημιουργίας κωδικών πρόσβασης σε επιχειρήσεις. Έτσι η εταιρεία ασφαλείας κυκλοφόρησε ένα open-source tool to check passwords through your computer's GPU.
The GoCrack tool (there is in GitHub) performs the cracking tasks by managing privileges, so that passwords are not dropped in the wrong hands.
So only those who perform the tests or those who are licensed by the system or application manager can see the contents of a cracking work.
"Changes to a task, viewing broken passwords, downloading a task file, and other sensitive actions are recorded and are available for control by administrators only," the company said in a blog post.
Cracking engine dictionaries, character rules, and more are available to others users, but only the administrator can see the results or edit the application.
GoCrack uses the hashcat v3.6 or a later version and does not need an external server that has a database. The application supports LDAP or back-end authentication.
The cracker server component runs on any Linux server with Docker and NVIDIA Docker that allow GoCrack to run in a container with full access to the server GPU.
The developer's future plans include MySQL and PostgreSQP database support, UI support for processing files, automatic task termination and extensive hashcat settings.
