Password Cracking 1.3 Challenge Exercise

Hello there!

I am trying to solve the password cracking 1.3 challenge exercise. It has been almost 3-4 days and still i am unable to crack the password. I don’t know where i’m making the mistake. Can someone help me, as i have been following the instructions given in the challenge exercise, but still no luck…

The commands that i’m using are;

1. hashid -m -e ‘hash from the file’
2. cewl -w helena.txt http://psybrary.com
3. wc -l helena.txt
4. hashcat --stdout -r /usr/share/hashcat/rules/best64.rule helena.txt | uniq -u >> helena_mangled.txt
5. hashcat -a 0 -m 1600 ‘hash from the file’ helena_mangled.txt

I have been typing these commands, but the last command is unable to crack the password for helena. Desperately need some help!

I am attaching the screenshot of the final status here, which says “Exhausted” instead of “Cracked”. So it means i still couldn’t crack helena’s password.

Screenshot 2024-09-15 1507421274×768 61.5 KB

On http://psybrary.com is a link to another website that “inspires” them. It is this link you should follow and use cewl on, not http://psybrary.com. Your steps are good, just use the right web page for cewl.

Hi, thanks for your response, I tried different variations of webpage, but still i am unable to crack the password. I tried cewl on the following;

1. https://edgarcayce.org
2. https://secured.edgarcayce.org

Tried all these options, but still not successful

Would really appreciate if you can guide me, what i am still doing wrong.
Thanks!

Here are the steps I took to crack the .htpasswd file:

image966×553 46.7 KB

Thank you very much for your guidance. Finally, I was able to solve the problem. Actually in the instructions given in the challenge exercise, they mentioned https://site-to-scrap, this https confused me as the webpages with https were edgarcayce.org etc, i think this was the biggest catch in this challenge exercise. Once again, thanks for your guidance and help in solving this issue.
Best Regards!