Hash Cracking with hashcat

Have you ever wondered, after exploiting an SQL Injection ( if you don't know what SQL Injection then click here ) vulnerability and getting the administrator password as an encrypted string, how on earth am I gonna do with this encrypted sh*t. That is not the actual password but it is an encrypted string so that you (I mean hackers) can not extract the actual plain text password and login as administrator. There are ways we can try to crack a hash, obviously depending on the encryption used to procuring the hash. Here is a video of cracking hash with hashcat. Hashcat is a tool to perform different types of attacks against the hash in order to get the actual password behind it. There is no guarantee that you will get the actual password behind the hash but where is the problem in trying to hit? The video it quite self explanatory and it is in Bengali language. I made it long ago as part of a course however if you do not understand bengali language, you can learn the process watching this video. I tried to crack an MD5 hash and used my own password list ( you will know what I am talking about if you watch the video ). Stop wasting time reading this and watch it 

Download links for password list:

1. http://dazzlepod.com/site_media/txt/uniqpass_preview.txt

2. https://crackstation.net/buy-crackstation-wordlist-password-cracking-dictionary.htm

3. https://packetstormsecurity.com/Crackers/wordlists/

4. http://home.btconnect.com/md5decrypter/hashkiller-dict.rar

5. http://home.btconnect.com/md5decrypter/output.rar

6. http://hashcrack.blogspot.de/p/wordlist-downloads_29.html

7. http://www.md5this.com/tools/wordlists.html