Show HN: I Dedicated 4 Years to Mastering Offline Password Cracking

268 points by bojta-lepenye ↗ HN
Hi everyone,

I am Bojta Lepenye, and first of all, I want to thank the core developers of Hashcat. In my experience, it is quite literally the most capable tool available for offline password cracking across a wide range of use cases.

I have spent the last 4 years (from age 14 to 18) extensively working with Hashcat and the tools surrounding it, and I have documented what I have learned throughout that time (since January 18, 2022) in my first book. During that period, I also had to continuously update and rewrite major sections as the field evolved. One example was the introduction of GPU support for Argon2 and other memory-hard password hashing algorithms, which significantly changed some cracking workflows.

My passion for this book, or its “quick starter,” if you will, came from an ethically conducted penetration test I performed with full authorization at my school. This is something I am both hesitant and quite proud to acknowledge.

At the beginning, I simply wrote down everything I had learned from YouTube videos and online blogs. However, not long after starting my project, I realized I practically knew nothing about password security, and that small 10 to 15 pages I had written would never be enough if someone was looking for a professional guide to cracking passwords.

The other main driving force behind the book was the fact that while researching online, browsing forums, reading academic papers and white papers, watching videos, exploring blogs, inspecting presentations, and examining infographics, I did not find a single source that comprehensively covers and explains everything one needs to understand about offline password cracking. Literally. Not one.

Therefore, I continued my research and learned about password hashing algorithms, the security properties of hash functions, advanced hash cracking techniques, password analysis, attack optimization, and much, much more.

From the very beginning, I wanted to share this knowledge with the community because having access to a resource like this would have helped me tremendously when I first started learning password cracking.

I sincerely hope this work will be useful to both beginners and experienced professionals alike, and I look forward to hearing your thoughts and feedback.

I have also put together a little video to give you a little sneak peek into it. It is on Google Drive. It is the official domain, and you do not need to download anything. Here it is: https://drive.google.com/file/d/13LeysSZO8Mx-LGKt8UQjUGBKOYH...

If you are interested, the book is now publicly available on Amazon, and can be read for free with a Kindle Unlimited subscription: https://www.amazon.com/dp/B0GX36XRCD

30 comments

[ 3.8 ms ] story [ 44.5 ms ] thread
Great job. The book is 427 pages.

Why not put the video on YouTube?

Thanks for sharing. This looks interesting. Impressive achievement.

This book is currently not really relevant for me, so I just skimmed the samples on Amazon. I found the technical content to be reasonably accurate and interesting although sometimes a little bit verbose (e.g., the section about 'what is a password') or slightly imprecise. In general, I think this book might have benefited from a thorough copyediting pass. There are quite a few grammar errors and unpolished sentences in the book, e.g.:

> The reason why Linux is imperative is that well, for one, most of the tools we will use, while indeed have builds for other systems, like Windows, in this book we will work with Linux.

Wishing you success and keep on writing!

Congratulate on finishing such a big project on a complicated topic, and putting in all this effort so that others can learn as well. I enjoyed reading the first few pages on Amazon
Congratulations! The book looks great.

I would love to hear more about the process of writing and preparing it for publishing. It's self-published? How did you do the typesetting and the diagrams?

Thank you so much. Yes, the book is self-published. For the typesetting, I used https://reedsy.com/ . I made all of the diagrams in PowerPoint myself, and just inserted them as high-quality images.
can you discuss your coverage of password mask attacks, specifically is there any advances since EBM
This is an amazing achievement for someone of any age, but to publish a book with this much research at 18 is phenomenal. I heartily congratulate you.

I've hopped through the book and it seems carefully laid out and organized. I may come back at you with questions once I've read further. Cheers.

I'll add my congratulations too.

I work in info sec - I've always been interested in password cracking and hashcat specifically, but have never had the time to devote to really dig into it. I'll check it out.

Well done!

The video url is down? This sounds super interesting!
There’s a reason there are no books about this, because most people are not interested in cracking local/offline passwords.

In fact, the people most interested in password cracking are usually criminals.

But good luck with the book. It’s just not a hugely in demand topic.

Tons of people in it service occasionally would like to crack local passwords for clients. It’s a big world. That’s thousands of people needing to do this every month. More than enough to make a self published book worth publishing. I’ve sold a few books that even though they maybe only sell a few copies a month have made me more than 250k over the years. Slow returns, but it’s the gift that keeps on giving.
when i was running 150k amd gpus... i really wanted to use the cluster to run hashcat to help people recover lost things. i couldn't convince management that that was a profitable business to run.
This is a really impressive project, especially starting at 14. The point about there being no single comprehensive resource rings true, I've tried to learn about password security before and always ended up jumping between five different tabs just to understand one concept.
Nice job! It is a massive achievement to publish a book let alone to be start a career so early at age! Now need to find time read the book. It seems it be quite interesting.
Ok, so what should we use instead of passwords?
Depends on for what.

online services/anything you can autofill with pw manager:

random generated password as long as possible + MFA like hardware token (UF2)

FDE device/pw manager/anything you can't autofill:

Passphrase containing at least 8 random words (Diceware) + if possible MFA like keyfile or hardware token

I've got an old datacenter KVM with a root password I've been unable to crack, even though it's an ancient DES one.

Does anyone have a good cloud-hosted password cracker? I can't seem to brute force it, no matter how long I let John the ripper run.

Rent a gpu from vast.ai or similar an let hashcat have fun
Nice to see someone going the same path as me!

Haven't read the book or used Hashcat, I have a question. Is there anything yet to generate rainbow tables out of password regex?

I just bought the book and look forward to reading it. I also started in cyber at 14.

These are the kinds of real-world constraints where you actually learn how tools like Hashcat work under pressure.

You are going to do big things in the industry!

It’s always exciting to me when someone who has been so obviously passionate and obsessed with a technical discipline decides to take the time to write down what they have learned to help others. This is literally the foundation of civilization and what makes me happy to be a post-agricultural human. So, thank you.

I have followed a similar path in other technical subjects, and have authored a couple of books on those journeys. I look forward to reading yours.

Some people have brought up style and structure issues with your book.. try to take this in stride. Writing for publication is its own whole thing, and involves a lot more than just putting ideas to print. Creating text that conveys the spirit, personality, and information that you want it to is nontrivial, and it takes time and practice to master. It’s easy, as a reader, to feel the rough spots in a literary work… but that does not mean that the reader would do any better when confronted with writing a book level tome, so hear the critique but don’t overthink the critic.

Even though writing well was a side quest to my otherwise very technical focus, I found a joy in developing my literary voice… and I would encourage you to keep uncovering yours.

Don’t be bullied into writing “correctly”. If you want to ponder the senselessness of life you can read one of millions of “correctly” written papers that will have you wanting to end it all just so you don’t have to go on. In these informative but wasted pages you won’t find a shred of the author, and only find yourself bored by the subject that so enthralled them to spend a thousand hours or more writing about it. What a wasted opportunity. They became so focused on writing correctly that they lost their voice entirely. Their writing may inform, but it will rarely inspire.

In these little bits of your writing I have skimmed so far, there’s plenty of warts but I feel you in the work. Your passion is contagious, and I am encouraged to learn. Sure, work out the warts, but don’t be bullied into writing “correctly” by sticking to formality and convention.

Writing is about informing, inspiring, and guiding the frame of mind of the reader. Your work does that because your voice shines through. Sure, it could be easier to read, sometimes clearer, and you should work on that if you want to, but don’t sacrifice your voice in the process. The best written work has a definite personal opinion on how to write a voice, and it’s usually not the “correct” way.

Humans writing like humans is what makes writing worthwhile in the third industrial age. Frolic in your humanity and keep up the good work. Don’t let the well intentioned bastards keep you down, especially if they have a point.

Great like accomplishing something like this at the age of 18 is truly remarkable
Hi Bojta, I just bought your book via Amazon from Germany. Nowadays I only read on my e-reader but wish to support your achievement and bought a hard copy. I'm excited to read and learn; in recent times I'm scared of LLM writing and books fully created by those things. So I hope I'll like this and learn a lot. I love that you created the graphs in PowerPoint. Here's to your success. Do you have a newsletter or website for blog articles and other books in the future?