Find and notify users in your Active Directory with weak passwords
Project description
Crack-O-Matic
Find and notify users in your Active Directory with weak passwords.
Features:
- Linux-based
- Flask-based web app
- Hashcat or John cracker
- Automated e-mails
- Graphical reports
- Privacy preserving
Read the docs for more information.
Screenshots
Tests
If you're a developer and want to run the tests, you need to edit
tests/.env and define the following variables according to your
environment:
# path to `john` binary
JOHN_PATH=/opt/john/run/john
# path to `hashcat` binary
HASHCAT_PATH=/usr/bin/hashcat
# FQDN of a test domain
DOMAIN=crack.local
# name of one of its domain admins
DOMAINUSER=Administrator
# domain admin password
DOMAINPASS=
# FQDN of a domain controller in the test domain
HOST=localdc.crack.local
If you don't have a test domain, you can use the docker-compose file in
tests/docker to run a Samba DC (docker-compose run --service-ports dc).
Inside the file you will find the values you need. You should also create an
entry for the FQDN in your /etc/hosts.
License and Copyright
MIT, Copyright 2021 Adrian Vollmer
See LICENSE for the full license text.
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
File details
Details for the file Crack-O-Matic-0.2.1.tar.gz.
File metadata
- Download URL: Crack-O-Matic-0.2.1.tar.gz
- Upload date:
- Size: 71.0 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/3.4.1 importlib_metadata/3.7.3 pkginfo/1.7.0 requests/2.24.0 requests-toolbelt/0.8.0 tqdm/4.51.0 CPython/3.9.2
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | 324fb5d1bc7228f775dc5d55481b3a449a3db15224547c32f39fed526a8f8c0a |
|
| MD5 | da33e909457b4a6057b96ff934b4dc4e |
|
| BLAKE2b-256 | 66f7b0c11181524355829ffc6a179b1c086f94d774de56af83a858ccff1fdb81 |
