hashcat -m 1000 -a 0 hash.txt rockyou.txt # NTLM hashcat -m 1800 -a 0 hash.txt rockyou.txt # bcrypt hashcat -m 5600 -a 0 hash.txt rockyou.txt # NetNTLMv2</code></pre>
<h3>Bruteforcing</h3>
<pre><code># Hydra
hydra -l admin -P rockyou.txt ssh://target hydra -L users.txt -P pass.txt smb://target hydra -l admin -P pass.txt http-post-form "/login:user=^USER^&pass=^PASS^:F=error"
The biggest downside of going offline is staleness. Hacktricks updates daily with new CVEs and techniques.
The Hybrid Approach:
Schedule a cron job (Weekly) on your home machine to automatically git pull and rebuild the mkdocs site. Then, use rsync to push the update to a cloud drive (Dropbox/Google Drive) or a USB drive you carry. hacktricks offline
Do not let your offline copy become a historical artifact. Update it every Monday morning.
scp user@target:/remote/file local/file
There are three distinct levels of offline preparation: The Quick Save, The Dedicated Repository, and The Portable Appliance. hashcat -m 1000 -a 0 hash
During a remote engagement, your VPN might drop, killing your internet routing. Or, you might be on a client site where the Wi-Fi is strictly portal-authenticated. An offline mirror ensures your workflow never halts.
cd hacktricks && git pull
Set a cron job if you want it fully automatic. hydra -l admin -P rockyou
Many critical infrastructure clients (power plants, water treatment facilities, financial back-end systems) operate on networks with zero internet connectivity. Attackers must operate using only pre-loaded tools. If you forget a specific find command syntax for SUID binaries, you cannot Google it. Having HackTricks served on a local VM is a lifesaver.
crackmapexec smb target -u user -H NTLM -x "whoami"