Repository Statistics
Key metrics and engagement data
Timeline
Repository has been active for N/A
Repository Created
Last ActivityInactive for NaN months
Stars
Looks like this repository is a hidden gem!
No stargazers yet. Why not be the first to give it a star?
Check back soon, we will update it in background!
Languages
README.md
Phatcrack
Phatcrack is a modern solution for distributed hash cracking, designed for hackers and other information security professionals.
Key features include:
- Built on Hashcat, supporting most common Hashcat attacks and almost all hash types.
- Excellent UX for managing projects, configuring attack settings, and viewing results.
- Distributes attacks, allowing both dictionary-based and mask-based attacks to be split across multiple workers.
- Automatically synchronises wordlists & rulefiles to all workers. Low-privileged users can be granted permission to upload wordlists & rulefiles.
- Modern web-interface, with multi-user support and project-based access control.
Deployment
Server
Docker is the only supported deployment method for the server. The following instructions assume you already have Docker installed on your server, and are logged in as root (sudo su).
sh1# Ideally the container processes should be run rootless, so we'll create an unprivileged user.2useradd --system --create-home --home-dir /opt/phatcrack-server phatcrack-server34cd /opt/phatcrack-server56wget https://github.com/lachlan2k/phatcrack/releases/download/v0.7.0/docker-compose.yml78# Update your hostname here:9echo "HOST_NAME=phatcrack.lan" >> .env10echo "DB_PASS=$(openssl rand -hex 16)" >> .env11echo "PHATCRACK_USER=$(id -u phatcrack-server):$(id -g phatcrack-server)" >> .env12chmod 600 .env1314# If you chose a hostname that is publicly accessible and expose this to the world (not recommended), Caddy will automatically deploy TLS.1516## Otherwise, use the following for self-signed TLS17# echo "TLS_OPTS=tls internal" >> .env1819## If you want to supply custom certificates, place them in a directory called `certs`20## And add ./certs:/etc/caddy/certs:ro as a mount in docker-compose.prod.yml for21# echo "TLS_OPTS=tls /etc/caddy/certs/cert.pem /etc/caddy/certs/key.pem" >> .env2223# Make a directory to persist files in24mkdir filerepo25chown phatcrack-server:phatcrack-server filerepo2627docker compose up -d
You can then visit your local installation. The default credentials are admin:changeme.
Agents
To enroll an agent, visit the admin GUI, and click "Register Agent". The web interface will provide a script that you can run on the agent to enroll it.
However, if you want to set up an agent manually, you can do so with the following commands. You will need to replace REGISTRATION_KEY_FROM_SERVER_HERE with the key from the server.
sh1# Create a user for the phatcrack agent2useradd --system --create-home --home-dir /opt/phatcrack-agent phatcrack-agent34# Depending on your distro, you may need to the phatcrack-agent to a group5usermod -aG video phatcrack-agent67cd /opt/phatcrack-agent89# Download the phatcrack-agent program from the local server10wget https://phatcrack.lan/agent-assets/phatcrack-agent11# Or, you can download from https://github.com/lachlan2k/phatcrack/releases/download/v0.7.0/phatcrack-agent1213chmod +x ./phatcrack-agent14# Optionally add -disable-tls-verification if you are using self-signed certs15./phatcrack-agent install -defaults -api-endpoint https://phatcrack.lan/api/v1 -registration-key REGISTRATION_KEY_FROM_SERVER_HERE1617systemctl enable phatcrack-agent18systemctl start phatcrack-agent