hashcat -m 1000 hash.hc --show --outfile-format 2 Format 2 shows hash:plaintext . For just the plaintexts:
cat hash.hc | wc -l Ensure there’s at least one hash. Also check for trailing spaces or carriage returns (Windows line endings can cause issues). Use dos2unix hash.hc to sanitize. Don't just use -a 0 (straight wordlist). Use a combination: A. Dictionary Attack with Rules (Extra Quality Baseline) hashcat -m 1000 -a 0 hash.hc /usr/share/wordlists/rockyou.txt -r /usr/share/hashcat/rules/best64.rule B. Mask Attack (When You Know Password Structure) If you know the password is 8 characters, letters + numbers:
hashid -m hash.hc Or use online tools (offline preferred for security). If unsure, try hashcat --example-hashes and match the length/pattern.
# Step 1: identify hashid hash.hc dos2unix hash.hc Step 3: crack with rules & GPU hashcat -m <MODE> -a 0 -w 4 -O --force hash.hc rockyou.txt -r best64.rule -r OneRuleToRuleThemAll.rule --outfile extra_quality.txt Step 4: mask unsolved hashcat -m <MODE> hash.hc --show | cut -d: -f1 > cracked.txt grep -v -f cracked.txt hash.hc > unsolved.hc hashcat -m <MODE> -a 3 unsolved.hc ?a?a?a?a?a?a?a Step 5: final report hashcat -m <MODE> hash.hc --show --outfile-format 2 > final_results.txt
or with usernames (for NetNTLMv2): user:1001:aad3b435b51404eeaad3b435b51404ee:5f4dcc3b5aa765d61d8327deb882cf99::