Crunch

Crunch is a password generating tool that can interact with Aircrack-nglike John-the-Ripper .

Given a pattern, any characters set, or words, it is able to generate all possible combinations.

---

Usage

1. This tool only require us to specify 2 main paramters:

• Minimum length

• Maximum length

The command below shows how:

crunch <MIN> <MAX>

But as shown in the image above, it is NOT EFFICIENT at all to generate a wordlist that big, so we need to narrow down the domain of generating the password by providing a pattern, see the command below:

crunch <MIN> <MAX> <Character Set>

---

1. Now you can see how much the difference is between providing character set and not. but how to provide a pattern? check the command below:

crunch <MIN> <MAX> -t <Pattern>

There are several wildcards to use while generating a wordlist:

• @ : Lower case character or from a character set

• , : Upper case character

• % : Digit

• ^ : Symbol

For example, to generate something like Password!@34 we use the pattern Password^^%% (used grep just for demonstration):

---

1. We can also provide list of words:

crunch <MIN> <MAX> -p <word 1> <word 2> <word 3> ....

Check this example:

---

Crunch with Aircrack-ng

Just like the usage with John-the-Ripper , we can pipe the output into the standard input of aircrack-ng :

crunch <MIN> <MAX> -t <Pattern> | aircrack-ng -e <ESSID> -w - <Capture File>