Password Hacking in Kali Linux

Рет қаралды 815,774

John Hammond

Күн бұрын

Пікірлер

@Synclon Жыл бұрын

KZbin Please Don't Take this Video Down is for Educational Purposes Only 🙏

@TheBenSanders Жыл бұрын

@@mysterio8984 yup youtube-dl helps here :)

@pkoechkirui3797 Жыл бұрын

nobody can take down this

@Funtime2UwU Жыл бұрын

@@TheBenSanders link pls?

@0xabcdeff Жыл бұрын

Amen

@Exotic69420 Жыл бұрын

@@TheBenSanders upload somewhere

@justchecking12 Жыл бұрын

Pretty straightforward pretty simple way of presentation and you literally smash the youtubers who are trying to showcase their pretty secret ways of password cracking in 2 minutes not telling all the details and crucial structure of how it works.

@hedahddiamohamed3077 Жыл бұрын

Can u help me to hack

@Komaloffical89 8 ай бұрын

Hello @@hedahddiamohamed3077

@adyp487 Жыл бұрын

Why is this so ridiculously helpful?! PS: thanks John! Awesome work as always! 💜

@shelbyRogers-zn9rm Жыл бұрын

Whitehackerone is the best

@norfin8503 Жыл бұрын

This man really hit the ground running and hasn't stopped yet. He gives us more understanding of him without interviews and negative antics he just shows us who he is through the Recovery. True living legend. We salute to team usespy online. The execution, creativity, and goodness that came from it were inspiring on a number of levels. Cheers Alex &amp;amp; looking forward to seeing what you do next!

@Biyodmr 8 ай бұрын

bana yardımcı olabilir misiniz hack ile ilgileniyorsanız

@saurabhrathour8032 3 ай бұрын

Hey ppl, I'm a retired computer/IT person, Yet I still find *Adrian hacks online on the WEB* so informative and straight forward. Thanks for your advise and helping the people...........Great work and love watching.

@misholapatrick1925 Жыл бұрын

The efficiency of this *Top phase Resolution* is next level. To juggle walk throughs of various angles on the topic delivered to-camera, differnet content per topic from various folks underneath the umbrella of the track list of the larger big band concert itself is engaging and refined. To make a dense taccess like this so digestible is really something. Awesome work Mike !!!

@GabrielJasonWhitemumba Жыл бұрын

thank you

@paulhimle Жыл бұрын

Nice to be known as a “good friend”. One ‘Like’ coming up! 😊

@TAHAEDİTSYT333 Жыл бұрын

Hi everyone! Am extremely excited and feel blessed to click on this video. I know it super long, but so far....am loving every single second about it. I always wanted to do something in the IT filed, but with my busy schedule...I was always contemplating on where do I start, what am I going to focus my studies on and how difficult will it be for me with no IT background? However, watching this video have answered to all the questions. Thanks for taking your time to put this together for people like me *usespy online.*

@Biyodmr 8 ай бұрын

kanka bana bi konuda yardımcı olur musun eğer hack ile ilgileniyorsan

@TAHAEDİTSYT333 8 ай бұрын

Yorumu ben atmadım ki kendi kendine otomatik atıyor herhalde telefonuma virüs girmiş

@siddhantr1451 11 ай бұрын

He and David Bombal both have very good knowledge and understanding

@carparkingemir5741 Жыл бұрын

This man really hit the ground running and hasn't stopped yet. He gives us more understanding of him without interviews and negative antics he just shows us who he is through the Recovery. True living legend. We salute to usespy online. The execution, creativity, and goodness that came from it were inspiring on a number of levels. Cheers Alex &amp;amp; looking forward to seeing what you do next!

@SumanRoy.official Жыл бұрын

What John did not show you the most realistic way of Password cracking, Hashcat is really powerful but if you run short on wordlist you will never be able to crack it.😂 So to mitigate this situation where you can implement "rules" for hashcat which can modify the password candidate and try to check for different variations of the same password, that way your cracking probability increases significantly.

@HitemAriania Жыл бұрын

Indeed, do you have some good rule recommendations? Also, Hashcat is not only CPU based, you can select your GPU for even greater success (WSL is great for nvidia cards as an example)

@icebice Жыл бұрын

@@HitemAriania OneRuleToRuleThemAll is good afaik

@vaykhaVaykha Жыл бұрын

Hey. Can u help me with something.?

@shelbyRogers-zn9rm Жыл бұрын

Whitehackerone is the best

@anupkarki8237 Жыл бұрын

Have you been succesful using that?

@medelpasand Жыл бұрын

high quality content that matches your personal energy...... great work John . keep it going

@pedallknife Жыл бұрын

Keeping me motivated John, Can't wait to meet you one day!

@HiiHii-qo5ez 3 ай бұрын

The way you approached this project added so much to it. It’s great to see how your unique perspective contributed to the outcome. The role you play on your job *Adrian hacks online on the WEB* is crucial. I really appreciate the constructive feedback you give to me regularly

@juliusrowe9374 Жыл бұрын

John, super dope tutorial! Please do more of these.

@jbit590 Жыл бұрын

Thank you John for another amazing video, An understandable educational experience that doesn't make you want to take a nap lol very awesome 👏

@ReligionAndMaterialismDebunked Жыл бұрын

Sometimes those are good too.

@Gh0_-st Жыл бұрын

@@ReligionAndMaterialismDebunked yeah, if you hate yourself.

@shelbyRogers-zn9rm Жыл бұрын

Whitehackerone is the best

@davejackson1281 9 ай бұрын

This should be required viewing in school. My wifi has been acting up but my service provider says its nearly impossible to hack my modem/wifi. Now I see how easy it is and I can take steps to mitigate my exposure. The days of assuming that only a trained professional can be a danger to privacy are over.

@nazmiyeendes4560 Жыл бұрын

The efficiency of this *usespy online is next level.* To juggle walk throughs of various angles on the topic delivered to-camera, differnet content per topic from various folks underneath the umbrella of the track list of the larger big band concert itself is engaging and refined. To make a dense taccess like this so digestible is really something. Awesome work Mike !!!

@GabrielJasonWhitemumba Жыл бұрын

thanks

@Marc.Google Жыл бұрын

Love your energy and positivity John!

@theWSt Жыл бұрын

Great video, thx a lot! My days as an amateur hacker are over for a long time, but I'm surprised that John the Ripper is still actively maintained.

@erichillel6284 4 ай бұрын

This is awesome, very interesting and good job !!! As per my understanding, not matter which type of attack we will use, we will obviously always have to provide a Wordlist. So, this is the real challenge. For example, the number of non-duplicated combination of words with length=10 is 94^10 =621,491,424,183,448,320,000. What about the others lengths and what about the emojis... Looks like an impossible mission. And I even didn't mention the fact that every such run make take days, weeks,...

@TagsYoureIt Жыл бұрын

Every time I watch these episodes about passwords, I am terrified I'll see mine up there

@skreamzu Жыл бұрын

thats why you should use a password manager with "randomly" generated passwords!

@danielorji1829 18 күн бұрын

🤣🤣🤣

@feliciaware7609 Жыл бұрын

As a Retired combat Marine I want to tell you that as what you are doing is just as important as any warrior on the battlefield. You are waging warfare against cheater on the digital battlefield. You are defending and protecting the most vulnerable of our society against these predators and cheaters. Keep up the good work Team *Topphase Resolution* ..

@TheLakeJake3 Жыл бұрын

Would be careful self hosting pass bolt and making it available on the internet. Also with running in the cloud unless you know what you’re doing. Best to host on your lan, but only reachable via VPN to home network. Hope someone who needs to read this does

@shelbyRogers-zn9rm Жыл бұрын

Whitehackerone is the best

@luciferofazaroth Жыл бұрын

Love hashcat use it every week I crack anywhere from 300-600 passwords a week using a GPU which I would recommend. I have used my laptops CPU to crack smaller passwords on the fly but takes quite a lot longer.

@GooopGoooop Жыл бұрын

Hey John! In the first example, you showed us how attempting a password manually 3 times boots us out. How did hydra circumvent that security feature?

@Tomasu321 Жыл бұрын

You have 3 attempts before the server closes the connection, but you can just connect again. So hydra either opens a new connection for each attempt or every other attempt. However it's very noisy and your ip is most likely going to get banned pretty fast if used. Using Fail2Ban for example.

@TheQuest07 Жыл бұрын

Kickstarter - Online Cyber Security School. Great video John!

@nikhil2465 Жыл бұрын

everything was easy to understand but how we are going to get ip address w/o permission

@tempoclasse2907 10 ай бұрын

Ask them for it

@compilererror Жыл бұрын

I love this channel. Thanks for putting in the time and effort!

@mehmet_428 Жыл бұрын

This is the most comprehensive, understandable, well-presented historical spy site overview I have heard from any online agency. I have subscribed to and shared your channel with friends around the world. Whoever created usespy online that particular spy site deserves the highest of journalistic accolades. Bravo!

@purpleman173 Жыл бұрын

Awesome educational/informational video John, thank you 🙏

@dennislindstrom8155 Жыл бұрын

love those kind of videos. learn alot from you

@karstenachiriachu4840 Жыл бұрын

Great job man. Really do appreciate, learned a lot

@henrykandakai6955 Жыл бұрын

You need help *GREATSMARTTECH*

@henrykandakai6955 Жыл бұрын

GreatSmartTech is strongly recommended for problems and solutions for social media accounts…✅🇺🇸

@rudigerheissich9800 Жыл бұрын

How could it be that in the 1st attempt, when John typed in the password by himself, he was locked out after three attempts, but when he used the dictionary, he could try as often as he wants?

@wrdsalad Жыл бұрын

He wasn't locked out, his session was terminated. He just needs to reestablish a new session and try again. He reached the "MaxAuthTries" or half of it, rather. Run the command "man 5 sshd_config" to find out more about "MaxAuthTries"

@ignovia2122 Жыл бұрын

This isn't something I've looked into at all, but what makes sense in my head is that it could be something like this: Imagine that his 3 attempts to log in are like putting a key in a lock and trying to turn it. Perhaps the lock is set up to automatically kick you out when it detects three consecutive failed turns. What I'm thinking is that maybe hydra and other brute forcers/crackers are able to compare the "keys" to the "lock" without actually turning them, therefore seeing what would work and what wouldn't work without actually having to "turn the key," thus never triggering a reaction.

@mckenziepepper7942 Жыл бұрын

Hydra starts another connection for every attempt.

@rudigerheissich9800 Жыл бұрын

@@mckenziepepper7942 ty :)

@shelbyRogers-zn9rm Жыл бұрын

Whitehackerone is the best

@gopalrajkumar7323 Жыл бұрын

john your speech is well paced and your diction is excellent. Easy to understand for a fella like me. I appreciate it as do many without doubt. But can you slow down a fraction?

@TrapTalesCanada 2 ай бұрын

run the playback speed at .75

@An.Individual Жыл бұрын

4:19 definitely some naughty words in that password list 🙂

Жыл бұрын

Thank you for this content

@nobody124... 8 ай бұрын

I am interested in ethical hacking and cybersecurity can you provide some roadmap and most of the course which is available online are outdated. give some suggestion from where to start

@therealblastpop4540 Жыл бұрын

Interesting video. I'm really cueious how people use the mask attack.

@mathewmoven2390 Жыл бұрын

I was facing the same problem, he was the one that help me

@mathewmoven2390 Жыл бұрын

His user name is

@mathewmoven2390 Жыл бұрын

Loyd_Ethics

@mathewmoven2390 Жыл бұрын

@phillydee3592 Жыл бұрын

Very nice demonstration 👌🏼👌🏼

@germcauliffe7 Жыл бұрын

Another Great Video John. Fantastic Content!!!!

@LeMel257 Жыл бұрын

Duuuuuuuude!!!! The Hacker Caracters in the Passbolt!!!! hahaha Love it!

@FordCyber Жыл бұрын

Nice shot!! let's learn with John Hammond!!

@BM.Molin_2.0 Жыл бұрын

0:32 this video has been very helpful 1:30 ❤❤❤❤❤❤

@Crisco4393 Жыл бұрын

You are Outstanding John H.🎉❤😊

@lfcbpro Жыл бұрын

Is there a way to determine password 'rules'? So for example, it might say you have to use a number, character, capital letter etc? Thereby, you would know that passwords like 'adminadmin' are not worth trying, because they would not be allowed under the rules. Also, how does something like Hydra get around a time-out, where you can't try over and over, because it will either lock you out completely, or after say 5 attempts you have to wait 5 mins for next attempt to be allowed?

@quenchikennedy4568 Жыл бұрын

Sir thank you for such a great information. We appreciate your hard work

@beratcakr9020 Жыл бұрын

The quality of your spy job is so incredibly high. If you don't have team usespy online behind you, then you are clearly a multi talented individual. The way the access is structured are perfect, the visuals are stunning, the narration is engaging, and of course, the project is itself intriguing. You are a professional !!

@Vilematrix Жыл бұрын

hashes are just static numbers for plain asni chars. thats why salts come into place and re- hashing. most likely done with open source local cpu powerd crypto libs.

@sharulalom7541 3 ай бұрын

Y’all should stop calling everything “the bare minimum” when it’s literally not. Respect is the bare minimum, actually going out of your way to comfort and have an open ear for someone isn’t. Doing something like this is truly very nice and a great thing of him to do. I hope shit gets better for you and I salute *Adrian hacks online on the WEB* for being mature when it’s needed!

@charangmaharaj Жыл бұрын

When I executed hydra I am unable to get any valid password ..message is 0 valid password

@currupt_cryptids8534 5 ай бұрын

ok but here is the thing, how am I supposed to find out the targets ip if I dont have access to the device

@kaas12 Жыл бұрын

John, could you make a video about Genesis market that has recently been shut down? I’m wondering what they were selling there as they said it wasn’t just credentials but also browser addons which facilitated identity theft and account hijacking.

@emongtindero Жыл бұрын

Thank you John, really informative

@abcpsc Жыл бұрын

So why SSH didn't lock the account / give you some cool down time before retry? Seem like in the brute force attack Kali just guess without being stop in any way

@gerardmatija1677 Жыл бұрын

noo paolo cannone , ti seguivo da quando hai fatto il video di gara con gli inoob

@hirukosato7629 Жыл бұрын

how did u get the ubuntu and windows side by side please teach us

@subarunatsuki1902 Жыл бұрын

That's what I am wondering about right now. Did you found the solution?

@brainkato Жыл бұрын

Hello I love this very much but i would like to get Kali Linux How do I learn the Kali Linux commands Thanks for teaching us but reply me

@LemonZ-Original Жыл бұрын

It would be great if you could create/partner with a service that offers red team based exercises and labs that allow all levels of expertise to benefit and learn from. Something I would definitely pay for.

@HeimRocker Жыл бұрын

What about TryHackMe or HackTheBox ?

@lfcbpro Жыл бұрын

TryHackMe has red team exercises, a lot is membership content, but there are free labs too.

@mayavik1034 Жыл бұрын

John Strand's Cyber Range

@AndreeaCe 4 ай бұрын

So why do you set up virtual machines instead of partitioning drivers, doesn't that overloads your PC? What's your main OS? Might be better to use a container than a VM. I'd invest in some good external hard drivers to set up different OS and the used for such practices. Nowadays aren't that expensive, but in case that cannot be done, guess what is your doing it's sort of all right. In the end it will affect your hardware, so you'll have to do some repairs. I also presume when used malware attacks against eachother, once connected to the internet, it will find a way to leave the VM...

@cybersectom Жыл бұрын

Another great video!

@Ramakrishna-ip6rp 3 ай бұрын

How do i access an ip address it is not showing to me

@Ramakrishna-ip6rp 3 ай бұрын

Can anyone help

@OviOvi-y6d Жыл бұрын

Vrry good well done 😝

@OviOvi-y6d Жыл бұрын

I will start using passbolt thanx

@jacobfinder7476 Жыл бұрын

John is great!!

@5DimesPlayer Жыл бұрын

With Hydra, wouldn't you want to use something to mask your IP address? A firewall would detect all those password guesses, right? I'm asking as a noob.

@IMBlakeley Жыл бұрын

fail2ban will block pretty quick.

@hamedranaee5641 Жыл бұрын

Johny Johny you are awesome🤩

@ChrisspinBrakmah Жыл бұрын

I love the video, big up

@GabrielJasonWhitemumba Жыл бұрын

Love learning hacking

@diamond5003 10 ай бұрын

This was freaking helpful

@MailonOfficial 9 ай бұрын

Very helpful video not to use it against someone but for our own knowledge and have an idea how things work!

@nicholasbloom1 9 ай бұрын

but does it help getting into an old gmail cuz i need help with that

@hkhackeroriginal Жыл бұрын

Hats off to you.....

@MAHESHKUMAR-zi3rj Жыл бұрын

THANKS SIR FOR BEST VIDEO CONTINUE YOUR SERVICE

@ISMA20003 7 ай бұрын

Hi, thanks for this tutorial, one question why just create one user name and stop?

@bradfoster4198 Жыл бұрын

Couple Questions : Does SMB really spam out your NTLM hash to anyone who asks like that? That's kind of terrifying. Also, when using the dictionary attack against SSH in that way, isn't there rate limiting to prevent it from trying hundreds of passwords?

@shelbyRogers-zn9rm Жыл бұрын

Whitehackerone is the best

@zaubermaus8190 Жыл бұрын

i really hope the world will deprecate the use of traditional password systems soon, because its *so* annoying to deal with and most of the time it creates more problems than it solves. its a hassle for any user and a goldmine for any hacker.

@chaplinburp1731 Жыл бұрын

Hello John Hammond, How do you make a Wordlist with Crunch tools?

@JayeshRaj-v1r Жыл бұрын

nice video . If password is not found in both this file fasttrack and rockyou then how to find password of machine

@juiceboxjones3446 Жыл бұрын

Passphrases are the way to go

@calvinharrykojoworlanyomis8208 Жыл бұрын

you're good mate !!!

@Tffgang Жыл бұрын

Why am I getting connection refused?

@AldrichNitron 11 ай бұрын

Hi sir what if ssh is disabled on the victims machine...what would be the next steps in cracking password of username?..thanks

@georgemilton5651 Жыл бұрын

I have watch this video more than 10 times still not getting anything I need someone who can help me set all this on my computer using team view

@fixer1140 Жыл бұрын

"You should not be using english words in your password" Me creating passwords in portuguese kkkkkkkkkkk

@satishtiwary 9 ай бұрын

hydra is more easy you can use medusa or you can use ncrack

@Networkguy-800 5 ай бұрын

Question, Does one have to be on the network to be able to do that . How could you do it remotely?

@isabelguinoo8279 11 ай бұрын

I need a help to recover may account on Facebook but i dong' have the number ang gmail and also the was already factory reset

@laith4291 Жыл бұрын

I have a question What if the password bolt or whatever its name get hacked Does that mean every single password gonna leaks out or what

@izakk91 Жыл бұрын

Thanks for the information

@jamesjones6445 9 ай бұрын

Are you using VMware or. What are u using to use kali and ubantu the environment

@abdurrafaysaqlain5915 Жыл бұрын

Hi what if we've don't UBUNTU,or windows machine on my vmWare? which IP should I've to use for target for educatinol purposes. I'm real curious about this hope you'll answer this!