Question 1

How do I get started with password cracking using tools from Awesome Password Cracking?

Accepted Answer

Begin with the Hashcat or John the Ripper sections to find core tools, then explore wordlists and rules for attack strategies. Use the Communities section for forums like hashcat.net to seek practical guidance and tutorials.

Question 2

Awesome Password Cracking vs SecLists – which is better for wordlists?

Accepted Answer

Awesome Password Cracking curates a broader range of resources including tools and research, while SecLists focuses primarily on wordlists and payloads. Use Awesome Password Cracking for discovering specialized wordlist generators and analysis tools, and SecLists for ready-to-use wordlist files.

Question 3

What are the best Hashcat rules for cracking modern passwords?

Accepted Answer

Check the Rules section for collections like Hob0Rules or OneRuleToRuleThemStill, which are based on statistical patterns. Combine these with wordlists from the Wordlists section and use rule tools like duprule for optimization.

Question 4

How to set up distributed password cracking with Hashtopolis from this list?

Accepted Answer

Find Hashtopolis in the Distributed cracking section under Hashcat, follow its GitHub link for installation docs, and refer to the Cloud section for deploying on AWS or Google Cloud using tools like Rook or Cloudstomp for infrastructure automation.

Question 5

Is Awesome Password Cracking regularly updated with new tools and research?

Accepted Answer

Yes, it follows community contribution guidelines and includes recent additions like 2025 research papers on LLM password guessing. However, updates depend on volunteer efforts, so some links may become stale over time.

Question 6

Are the password cracking tools listed legal to use in my country?

Accepted Answer

Legality varies by jurisdiction; always use tools ethically with proper authorization, such as for security audits or research. The list doesn't provide legal advice—consult local laws and obtain permissions, especially for cloud cracking or sensitive data.

open an issue

What is open an issue?

Overview

Use Cases

Best For

Related Projects

Found a gem we're missing?

Not Ideal For

Pros & Cons

Pros

Cons

Frequently Asked Questions