Generating a custom password list
cewl method
-d (depth) - how deep you want it to crawl
--with-numbers - you need this flag if you want the cewl to generate password with numbers.
2. hashcat
generate the password_list using keywords you found on a web or somewhere else during enum.
there are many other rules under rules folder other than the best64 rule.
Adding other rules
create a document with the following content
more rules can be found here: https://hackingvision.com/2020/03/27/hashcat-rule-based-attack/#:~:text=Hashcat%20rules%20are%20rules%20that%20are%20programmed%20to,crack%20more%20passwords%20from%20our%20target%20hash%20table.
you can have more than 1 rules.
Last updated