Hello, today was my first job as a pen tester for my high school in which i graduated almost 2 years ago. Im atm at colledge studying Computer Science and im in an institute preparing to get the Certified Ethical Hacker and CISSP certificates.
The thing is i could found a sql blind injection vulnerability with uniscan and i exploited it with sqlmap. I got some database with the administrator account for the website account credentials. But the password is hashed (hash-identifier said it is MD5) but i could crack it as i did with other hashes. I used hashcat for this with simple rules and a 15GB dictionary which lasted for just 5 minutes but i had no success (I have a GTX 960m 2GB). Now im useing rockyou-30000 rules and its takeing about 1 day to crack it. Anyone who have more idea on password cracking could help me?
Here is the hash: aab32bf93a4b0227537c2532b6f6992f
BTW this is my first post in this forum. I had learned a lot here and i really appreciate what you are doing.
PD: I dont know if this is relevant but my native language (my school too) is Spanish. I hope someone could help me.