GoCrack: H FireEye argues that every sysadmin needs help enforcing enterprise password generation rules. So the security company released an open-source tool for checking passwords through your computer's GPU.
The GoCrack tool (there is in GitHub) realizes the cracking tasks with privilege management, so password tests don't fall into the wrong hands.
So only those who carry out the tests, or those who have permission from the system or application administrator, can see the contents of a cracking work.
“Modifications to a task, viewing cracked passwords, downloading a file work and other sensitive actions are logged and available for review by administrators only," the company says on its blog.
Crack engine dictionaries, rules for characters, and more are available to other users, but only the administrator can see the results or process the application.
GoCrack uses the hashcat v3.6 or a later version and does not need an external server that has a database. The application supports LDAP or back-end authentication.
The cracker server component runs on any Linux server with Docker and NVIDIA Docker that allow GoCrack to run in a container with full access to the server GPU.
The company's future development plans include MySQL and PostgreSQP database support, UI support for file processing, auto-termination, and extensive hashcat settings.
