After two years and six months, a new stable release is finally here! See the Changelog for details.
The installation has never been easier: Fitcrack is now available as a pre-built Docker image on Docker Hub. See Docker install README for details.
Fitcrack is a BOINC-based hashcat-powered distributed password cracking system. It recovers passwords that protect various encrypted media like documents, archives, or disk volumes, breaks various application passwords, as well as raw or salted cryptographic hashes. You can use our system to crack more than 350 different algorithms supported by hashcat. Fitcrack allows you to distribute your tasks over dozens of different GPU-equipped computing nodes with Linux, Windows OS or macOS. For controlling your cracking network and management of jobs, you can use our friendly WebAdmin interface, or communicate directly with our REST API.
A detailed documentation and other information can be found at https://fitcrack.fit.vutbr.cz.
Any issue or feature request? Join Fitcrack community on Discord.
Table of Contents
- Installation
- Fitcrack WebAdmin user guide
- Operating the server
- How to connect new hosts
- Advanced: Host-specific configuration
- Debugging
Run git clone --recursive https://github.com/nesfit/fitcrack
Since Fitcrack 2.4.0, Docker is the recommended method for deployment. Everything is shipped in a single container. It also has a native support for SSL/TLS which is now super-easy to configure. Nevertheless, you can still use the installer or manual install if you want.
See instructions the desired type of deployment:
- Installation using a pre-built image from Docker Hub (recommended, easy)
- Installation using a custom Docker build (make your own build of Fitcrack)
- Installation using Installer (working alternative)
- Manual installation (for advanced users/modders)
The default login credentials to the WebAdmin are:
- login:
fitcrack - password:
FITCRACK
In the Docker-based version, those defaults can be changed by modifying the
WEBADMIN_LOGIN and WEBADMIN_PW variables in your .env file.
To learn how to use WebAdmin, check our Fitcrack WebAdmin user guide.
Fitcrack provides an init script can automatically starts all the server daemons, and can be also used for stopping or restarting them. In the Docker-based version, the script is automatically set up inside the Fitcrack server container. With installer-based deployement, you will be asked whether you wish to add Fitcrack as a system service.
To control the server daemons, inside your Docker container (or on the machine where you installed Fitcrack), type:
service fitcrack [start|stop|status|restart]
For non-Docker systemd-based deployments, you can also use:
systemctl [start|stop|status|restart] fitcrack
It is also possible to operate the server daemons manually
by logging as the BOINC user (e.g. boincadm), descending into the
project directory (e.g. /home/boincadm/project/fitcrack) and running
one of the following:
./bin/start./bin/stop./bin/status./bin/restart
Sometimes you need to configure specific behavior for individual hosts.
Fitcrack allows you to define additional host-specific hashcat arguments.
This gives you options to select what GPUs to use for cracking,
configure the workload profile for fine-tuning of the performance, etc.
Simply create a file /etc/fitcrack.conf (Linux/macOS hosts) or
C:\ProgramData\BOINC\fitcrack.conf (Windows hosts).
If the file exists and is readable for the BOINC client user, the
Runner subsystem will append the content of 'extra_hashcat_args' to
hashcat's arguments.
$ echo 'extra_hashcat_args=-w 4 -d 1,2 --force' > /etc/fitcrack.conf
Hashcat will use OpenCL devices 1 and 2. The workload profile will be set to level 4 (Nightmare). The cracking session will be forced and all warnings ignored.
Fitcrack also allows you to use prestored dictionaries on hosts, so they do not have to be transfered from server to hosts.
$ echo 'prestored_dicts_path=/etc/fitcrack' > /etc/fitcrack.conf
Fitcrack client (Runner) will search for prestored dictionaries in /etc/fitcrack. So for example, if you use rockyou.txt for this job, copy rockyou.txt to /etc/fitcrack. Please also ensure that /etc/fitcrack is readable for BOINC. Run:
$ sudo chmod -R 755 /etc/fitcrack
For debugging Docker-based Fitcrack deployments, see this page. For deployments with Installer (or manual installations), see this page.
Visit CHANGELOG to see changes between different versions of Fitcrack
Visit UPGRADE to see how to upgrade Fitcrack (must be installed directly, not a docker version) to newer version.