Cloudtopolis: Zero Infrastructure Password Cracking
Cloudtopolis is a tool that facilitates the installation and provisioning of Hashtopolis on the Google Cloud Shell platform, quickly and completely unattended (and also, free!). Together with Google Collaboratory, it allows us to break hashes without the need for dedicated hardware from any browser.
Have 1 Google account (at least).
Cloudtopolis installation is carried out in two phases:
Access Google Cloud Shell from the following link:
Then, run the following commands inside this terminal:
curl https://raw.githubusercontent.com/JoelGMSec/Cloudtopolis/master/Cloudtopolis.sh | bash
Access Google Collaboratory through the following link:
It is necessary to fill in the fields in the “Requirements” section with the data obtained in Hashtopolis.
You can access Hashtopolis directly (provided it is running) from the following url:
Finally, execute the Collaboratory code until the agent appears registered in Hashtopolis.
Once the installation is completed, more agents can be added by repeating phase 2 as many times as desired. To do this, it is necessary to use 1 Google account for each instance of the Collaboratory. It is not necessary to repeat phase 1 at any time, you can use your other accounts or those of your friends and colleagues.
Kaonashi = Download the Kaonashi.txt dictionary
Kaonashi_WPA = Download the Kaonashi_WPA100M.txt dictionary
Rockyou = Download the rockyou.txt dictionary
OneRule = Download the OneRuleToRuleThemAll rule
VPS = Enable VPS mode, to connect to your own Hashtopolis server via SSH
SshHost = Here you must enter the host or public IP of the VPS server
SshPort = Here you must enter the SSH port of the VPS server
SshUser = Here you must enter the user of the VPS server
SshPass = Here you must enter the password of the VPS server
To load them, it is only necessary to change “False” to “True” before starting the code of the notebook.
By default, only Rockyou is selected to load at startup.
Copyright (C) 2021 Joel Gámez Molina // @JoelGMSec