Question 1

Can known_hosts hashes be cracked if domain names were used?

Accepted Answer

No, this tool only recovers IP addresses from hashed entries. If SSH connections were made using domain names, the hashes represent the domain, not the IP, and the attack won't work, as mentioned in the README.

Question 2

How to crack hashed known_hosts with hashcat on Linux?

Accepted Answer

Install hashcat and Python, run kh-converter.py on the known_hosts file to convert it, then use hashcat with the IPv4 hcmask file provided. The README includes step-by-step commands for this process.

Question 3

What GPU is recommended for cracking known_hosts hashes quickly?

Accepted Answer

A mid-range GPU like Nvidia GTX 1080 can crack a single IPv4 hash in about a minute, as shown in the example. Higher-end GPUs will improve speed, but the tool is optimized for common hardware.

Question 4

Is HashKnownHosts secure against this attack with stronger hashing?

Accepted Answer

Not entirely; the README notes that even with bcrypt, a single GPU could crack the entire IPv4 space in ~50 hours, and stronger algorithms might cause performance issues on low-power devices.

Question 5

known_hosts hashcat vs using a custom dictionary for IP addresses

Accepted Answer

This tool is superior because it uses mask attacks with the hcmask file, avoiding the need to generate and store large IP dictionary files (e.g., 4.3 billion entries), which saves time and storage.

Question 6

How long does it take to crack all IPv4 addresses for one hash?

Accepted Answer

With a single Nvidia GTX 1080, it takes about a minute per hash, as demonstrated. For multiple hashes or slower hardware, times increase, but the mask attack keeps it efficient.

Question 7

Are there alternatives to hashcat for cracking known_hosts hashes?

Accepted Answer

Yes, tools like John the Ripper can be used, but they may require custom scripting and aren't as optimized for IPv4 mask attacks. This project is specifically tailored for hashcat integration.

known_hosts-hashcat

What is known_hosts-hashcat?

Overview

Use Cases

Best For

Related Projects

Found a gem we're missing?

Not Ideal For

Pros & Cons

Pros

Cons

Frequently Asked Questions