Web & Server GüvenliğiDoğru web ve veritabanı sunucusu güvenliği sağlanmadan, bilgisayar korsanları hassas verilerinize erişebilir. Web, Sunucu ve veritabanı güvenliğini nasıl sağlayacağınızı buradan öğrenebilirsiniz.
Cracking in the Cloud with CUDA GPUs // DrEngerek //
Due to increasing popularity of cloud-based instances for password cracking, we decided to focus our efforts into streamlining Kalis approach. Weve noticed that Amazons AWS P2-Series and Microsofts Azure NC-Series are focused on Windows and Ubuntu. The corresponding blog posts and guides followed suit. Although these instances are limited by the NVIDIA Tesla K80s hardware capabilities, the ability to quickly deploy a Kali instance with CUDA support is appealing.
Installing proprietary graphics drivers has always been a source of frustration; fortunately, improvements in packaging have made this process much more seamless. Although weve done the work for you in the cloud offerings, wed like to help simplify installation for your own use.
First, youll need to ensure that your system is fully upgraded and that your card supports CUDA.
Note: GPUs with a CUDA compute capability > 5.0 are recommended, but GPUs with less will still work
apt-get update && apt-get dist-upgrade -y
Once weve updated the system, we need to check for the nouveau kernel modules, and if enabled, blacklist them.
root@kali:~# lsmod |grep -i nouveau
nouveau 1499136 1
mxm_wmi 16384 1 nouveau
wmi 16384 2 mxm_wmi,nouveau
video 40960 1 nouveau
echo -e "blacklist nouveau\noptions nouveau modeset=0\nalias nouveau off" > /etc/modprobe.d/blacklist-nouveau.conf
After modifying kernel parameters, well need to update our initramfs, then reboot.
update-initramfs -u && reboot
Installation on a Local Computer
Once we have rebooted and have determined that the nouveau modules have not loaded, we will proceed to install the OpenCL ICD Loader, Drivers, and the CUDA toolkit.
With the output displaying our driver and GPU correctly, we can now dive into password cracking. Before we get too far ahead, lets double check to make sure hashcat and CUDA are working together.
root@kali:~# hashcat -I
Platform ID #1
Vendor : NVIDIA Corporation
Name : NVIDIA CUDA
Version : OpenCL 1.2 CUDA 8.0.0
Device ID #1
Type : GPU
Vendor ID : 32
Vendor : NVIDIA Corporation
Name : Tesla K80
Version : OpenCL 1.2 CUDA
Processor(s) : 13
Clock : 823
Memory : 2047/11439 MB allocatable
OpenCL Version : OpenCL C 1.2
Driver Version : 375.26
If you receive the error clGetDeviceIDs(): CL_DEVICE_NOT_FOUND with Platform ID labeled Vendor: Mesa run:
apt-get remove mesa-opencl-icd
It appears everything is working, lets go ahead and run a benchmark test.
Success! Weve cracked the example hash and proven our installation is functional. There are a multitude of configurations to improve cracking speed, not mentioned in this guide. However, we encourage you to take a look at the hashcat ********ation for your specific cases.
Running a GPU Instance in AWS
Weve registered new CUDA enabled Kali Rolling images with Amazon which work out of the box with P2 AWS images. With virtually no additional setup required, you can get up and running with a Kali GPU instance in less than 30 seconds. All you need to do is choose a P2 instance, and youre ready to start cracking!