Extreme GPU Bruteforcer
Important! Using this software for purposes other than recovering your own lost passwords violates License Agreement and may violate the Law!
Program Description
INI File Parameters
Program Status
Demo Version Restrictions
License Agreement
FAQ
The program is meant for the recovery of passwords from hashes of different types, utilizing the power of GPU, which enables reaching truly extreme attack speed:
| Hash Type |
Average Speed (with NVIDIA GeForce 8800GS) |
| MD5 |
270 million p/s |
| MD5(Unicode($pass)) |
240 million p/s |
| MySQL |
620 million p/s |
| MD4 |
390 million p/s |
| NTLM |
320 million p/s |
| SHA-1 |
70 million p/s |
| MySQL5 |
38 million p/s |
| LM |
35 million p/s |
| Domain Cached Credentials |
160 million p/s |
| md5(md5($pass)) |
110 million p/s |
| md5($pass.$salt) |
165 million p/s |
| md5($salt.$pass) |
155 million p/s |
| md5(md5($pass).$salt) |
100 million p/s |
| md5(md5($salt).$pass) |
155 million p/s |
| md5($salt.$pass.$salt) |
115 million p/s |
| md5($salt.md5($pass)) |
55 million p/s |
| md5(md5($salt).md5($pass)) |
75 million p/s |
| md5(md5($pass).md5($salt)) |
75 million p/s |
| md5($username.0.$pass) |
155 million p/s |
| sha1($username.$pass) |
40 million p/s |
| sha1(strtolower($username).$pass) |
40 million p/s |
| DES(Unix) |
1 million p/s |
| MD5(Unix) |
85000 p/s |
Number of non-salted hashes the program can handle simultaneously: Unlimited.
Number of salted hashes the program can handle simultaneously: 512.
To launch the program, pass the following command-line parameters to it:
1. Name of the INI file with attack settings (minimal and maximal password length, character set to be used, etc.) This parameter is not mandatory, since by default each EXE module uses the INI file with the name identical to the module name (for instance, MD5.exe will use settings from the MD5.ini file available in the program setup file). However, you can create several INI files with different attack parameters and feed them to the program one after another.
2. Name of the text file with hashes. The format of hash lines to be observed: "one line = one hash". The program setup file includes evaluation files with hash samples. This parameter is mandatory.
MaxLength – maximum length of searched passwords. Common range of values – from 1 to 15 characters, but some hashing modules support longer passwords too; e.g., the MD5.exe module can handle passwords with length of up to 55 characters. Available values can be found in the INI file of the specific hashing module. The default value is 7 characters.
MinLength – minimal length of passwords searched. The default value is 3 characters.
CharacterSet – character set to be used for the attack. The following standard character sets are supported:
?d – 0123456789
?l – abcdefghijklmnopqrstuvwxyz
?u – ABCDEFGHIJKLMNOPQRSTUVWXYZ
?s – !@#$%^&*()`~-_=+\|[]{};:'",.?<>/?
You can also set your own character set (for example, "qwertyuiop") or set a combination of the standard character sets and your custom character set; for example:
CharacterSet=?l?d?u
CharacterSet=qwerty?d
CharacterSet=1234567890abcdef
CharacterSet=!@#?d?l
Default character set – ?l?d.
PasswordsInThread – number of passwords to be processed in a single thread (1...30000); the default value is 6000 passwords. To decrease the GPU load, you can decrease this value. In this case, the search speed will drop slightly, but on the other hand the computer won't drag on working with other applications. And the other way around – increasing of this parameter will put the greatest load on the video card, which will increase the attack speed, at the same time slowing down other applications.
LastPassword – this parameter stores last processed password. Therefore, when the program is launched again, the attack will resume from that password. Thus, in order to start the attack all over, you will need to drop the value in this parameter. Note: If you don't want to have last processed password stored in the INI file set the Read-only attribute on that INI file.
StreamProcessors – number of stream processors (16...512); the default value is 96 (for GeForce 8800GS).
DeleteHashes – this parameter allows removing recovered hashes from the original text file. On the "1" value, the recovered hashes will be deleted; on the "0" value (default) - the hashes will be preserved.
CurrentDevice – this parameter allows choosing which of the available GPU is to be used for running the attack when several GPU (or several video cards) are available. This allows managing the load on each video card more efficiently and also allows running attacks with different settings on different GPU simultaneously. Available values are in the range between 1 and 16; the default value is 1.
To select the MultiGPU mode you can list the numbers of the GPU to be engaged, separating the values with comma. Examples of using MultiGPU:
CurrentDevice=1,2
CurrentDevice=1,4
CurrentDevice=2,3,4
CurrentDevice=1,2,5,6,7,8
In this mode, you can set individual StreamProcessors and PasswordsInThread
values for each GPU, also listing them via a comma, like this:
CurrentDevice=1,2
StreamProcessors=112,96
PasswordsInThread=6000,2000
or
CurrentDevice=1,2,3,4
StreamProcessors=128,128,128,64
PasswordsInThread=3000,3000,3000,100
etc.
AttackTime (in munites) – allows limiting the duration of the attack. The default value is 0, i.e. the attack is not restricted by time.
Mask – sets the mask for the mask attack; if this property is not empty, the mask attack will run automatically (accordingly, to run the brute force attack, this property should be cleared or commented out). To expand the flexibility of using this attack, the INI file allows setting custom character sets (parameters CustomCharacterSet1...CustomCharacterSetF, up to 15 sets total). Mask examples: pass?d?d?d?d?d?d, ?u?u?u?l?l?l2009, Admin?1?1?1?1?1?1, etc.
AppendToDictionaryFile – this parameter determines whether or not to append found passwords to dictionary file (e.g., for module MD5.exe that would be MD5.dic). On "1" (default) passwords are appended, on "0" they are not.
AppendToOutputFile – this parameter determines whether or not to append found passwords to the program's output file (e.g., for module MD5.exe that would be MD5.out). On "1" (default) passwords are appended, on "0" they are not.
OutputFileFormat – this parameter defines the format, in which found passwords are to be appended to OUT file. The following values are supported:
"0" (default value) - hash:password
"1" - hash:[color=blue]password[/color] (this format allows publishing found passwords in the format common to the InsidePro Software forum).
Extreme GPU Bruteforcer is Shareware.
The personal license fee is €39.95.
Learn how you can pay for the license key.
Click here.
Maximal duration of attack is limited to 3 minutes. Also disabled is the recognition of the LastPassword parameter.
1. All rights for Extreme GPU Bruteforcer are reserved to InsidePro Software.
2. The software is distributed as Demo, without any restrictions on the length of the evaluation. You may also copy and redistribute the unchanged distribution of the Demo edition on any data mediums (hard disk, floppy disk, CD-ROM, etc.).
3. To remove all restrictions from the software, you must register your copy of the software by purchasing and then entering a license key (or several license keys) in the application.
4. The use of license keys by any person not registered as an authorized user of the software, distribution of or publishing license keys are illegal. The author of the software reserves the right to revoke the registered user status from such key owners and block the revoked keys in the future versions of software.
5. You shall not modify, disassemble or decompile this software. The violation of this provision in any part shall lead to the immediate termination of this license agreement.
6. The software is provided "AS IS". You use this software at your own risk. Under no circumstances shall the author be held liable for any data loss or damage, lost profits or any other damages caused by using or not using this software.
7. The author guarantees that the software does not contain harmful, spyware nor any other code designed for performing any functions other than those stated in Program Description.
8. Using the software shall indicate your acceptance of this license agreement.
9. If you do not wish to be bounded by these terms, delete all files of this software from your computer and stop using this software.
Q1: What are the system requirements that your program lays down?
A: The main requirement is that your video card must support the CUDA technology (you can find the list of such video cards here). Other than that, you must have the latest drivers for it installed on your video card.
Q2: My video card has an ATI GPU. Will your program work with it?
A: No, it will not, since the CUDA (Compute Unified Device Architecture) technology is only supported by GPU manufactured by NVIDIA.
Q3: When I launch the program, it brings up a DOS prompt window, which disappears the very next moment. How am I supposed to work with the program?
A: For the convenient operation, use a file manager that runs in the DOS mode; e.g., FAR Manager.
Q4: The program pops the "CUDA Error: ..." message on startup. How can it be fixed?
A: First of all, make sure that your video card supports the CUDA technology, and you have got the latest video card drivers installed. If these requirements have been observed, and the error persists, please send the following information to our Technical Support Service for the analysis: error message, exact model of your video card, and the GPU information returned by the GetDeviceInfo.exe program that's included in the setup file.
Q5: My computer hangs or shows the "Blue Screen of Death" (BSOD) when the program is launched. How can this be fixed?
A: That can take place when your GPU is over-clocked; therefore, it is recommended that you restore the original values of the GPU and memory clock. Also, make sure that your video card receives reliable and quality cooling, as the program employs the full power of your GPU and, consequently, in this operating mode its temperature goes up. Also, running under the full load, the video card consumes a great amount of electricity, and your power supply may fail to meet such power demands.
Q6: I managed to launch the program; now, how can I halt it?
A: Press the Ctrl+C or Ctrl+Break shortcuts on the keyboard.
Q7: I launched the program, and now my computer runs really slow. How can this be fixed?
A: By default, the program is configured to run in the extreme operating mode, where the computer is loaded with only one job – recovering passwords at the highest speed possible. Obviously, that leads to slowing down the operating speed of the rest of applications. To decrease the load on your computer, decrease the value in the PasswordsInThread parameter in the INI file.
Q8: How can I save recovered passwords that the program prints on the screen?
A: Besides displaying recovered passwords on the screen, the program automatically accumulates them in the DIC file and also adds them in the format "Hash:Password" to the OUT file, which it automatically creates in its folder immediately after it's launched. See also the following INI file parameters: AppendToDictionaryFile, AppendToOutputFile and OutputFileFormat.
Q9: Does the program recover passwords that contain national characters; for instance, Cyrillic?
A: Yes, it does; for that purpose, in the CharacterSet parameter of your INI file enter the required character set.
Q10: When I launch an attack to recover salted hashes, my computer freezes or displays BSOD. Why?
A: Since the speed of processing salted hashes decreases proportionally to their number, with a great number of hashes it is necessary to decrease the value of PasswordsInThread (and of StreamProcessors when that's necessary). Otherwise, the total number of threads in a GPU, multiplied by the number of hashes in each thread, with a low attack speed will lead to the point where the GPU will become overloaded with calculations and will take too long to respond to the driver's queries.
Q11: Now, how do I determine whether or not GPU is overloaded?
A: In the normal state, EGB refreshes the attack speed indicator 2 times per second; therefore, if the refresh rate on your screen is noticeably lower, your GPU is overloaded, and you need to lower the values of PasswordsInThread and StreamProcessors.
Q12: How the module DES(Unix)_Same.exe differs from the module DES(Unix).exe?
A: DES(Unix)_Same.exe is meant for working with a list of DES(Unix) hashes that have same salt. That allows, when attacking a large number of hashes, to obtain the same speed as when attacking a single hash.
Q13: I am trying to launch the md5(md5($pass)).exe module, but that launches the MD5.exe module (or the attack settings are read from MD5.ini instead of md5(md5($pass)).ini). Why does that happen?
A: That happens because in Windows, when it works with the command line, file names longer than 8 characters are to be enclosed in quotes; for example: "md5(md5($pass)).exe". The same applies to INI files and files with hashes.
Q14: When I launch an attack with a long mask, the status string (which shows the attack speed and current password) sometimes doesn't fit the size of the console window. How could that be fixed?
A: To ensure the proper appearance of long passwords on the application's status bar, expand the width of the console window through its properties (that feature is available beginning with Windows 2000/XP) - for example, instead of the default 80 characters, you can set 100 or even more (if the resolution of the screen and current console font allow).
