- #_shellntel Cybersecurity Blog
- Posts
- Installing Hashcat for Peak Performance, or, an Ode to Overthinking
Installing Hashcat for Peak Performance, or, an Ode to Overthinking
Chad Finkenbiner
May 07, 2026
The problem
Back in February the boss FINALLY approved a new cracking rig for the team. Ours are getting a bit long in the tooth, and this new system will have the potential to be twice as fast as our two current ones combined! Anyway, I'm getting ahead of myself. Stay tuned for a post about that new machine!
I wanted to make sure our new rig was spinning at absolute peak performance, so I asked if I could do some experimentation on different software combinations and configurations to see which, if any, came out on top. For example, most of the Internet will tell you that a Linux-based OS will absolutely perform better than a Windows OS, but will it really? And even if that's true, which of the hundreds of Linux flavors should I use? And what about drivers? And what does "headless" really mean? There are shockingly few reports on these questions, and many of the ones that do exist are not terribly recent. This post sets out to get new, modern answers to all of them!
The setup
Hardware
All testing was performed on the exact same hardware to control for variables such as slightly better ventilation, random chip bin performance differences, etc. The hardware included the following:
CPU: AMD Ryzen 9 9950 X3D
GPU: MSI Suprim GeForce RTX 5090
SSD: Crucial T710 1 TB PCIe 5.0 NVMe SSD
Motherboard: ASUS ROG Strix X870E-E
Memory: Crucial Pro 96 GB (2x 48 GB) DDR5 5600
Software
Each OS and driver change prompted a complete wipe and reload of the system. The different hashcat installations were performed side by side. The different software configurations included 5 different operating systems:
Ubuntu Server 24.04
Fedora Server 43
Kali 2026.1
Arch 2026.03.01
Windows Server 2025 Core
3 different hashcat installations (where applicable; Windows does not have a single, standardized, official software repository with hashcat available):
From the default package repository
The pre-compiled binary from hashcat
Building from source on the target machine
and 2 different driver installations (where applicable; both full and headless drivers were either not available or not practical for both Windows and Arch)
Full suite
Headless install
The process
What to test
I decided early on that the testing should be practical and that the hash modes should be limited to hashes commonly found by actual penetration testers in the field. The modes should also encompass fast, slow, and moderate hashes. With that in mind, the following four modes were tested to get an idea of how well the performance was for the different types:
22000 (WPA-PBKDF2-PMKID+EAPOL); e.g., WPA2 handshakes
13100 (Kerberos 5, etype 23, TGS-REP); e.g., Kerberosted accounts
5600 (NetNTLMv2); e.g., Relayed authentication
1000 (NTLM); e.g., Windows Active Directory dumps
I regarded these hash modes as slow, moderate-to-slow, moderate, and fast respectively. Testing things like MD5 (superfast!) and bcrypt (s u p e r s l o w) really didn't seem to add value because
They aren't commonly encountered in real-life engagements
Test time was limited; I couldn't very well test everything!
How to test
This one required more thought than I had first expected. There are a lot of different ways to approach this, but in the end I opted to write a little script to run the built-in hashcat benchmarks for each hash mode five times. Other methods could have been to run a full brute-force attack to completion, but this would have wasted an absolutely incredible amount of time, energy, and money. I could have run other specific attacks that our team uses during engagements. Those results would have been extremely useful to our team but dramatically less useful to anyone else. The built-in benchmarks offer a known, consistent test every time they are run. This makes them useful to a much broader audience, which is the point of this post anyway!
I've included my test script below. It is extremely simple (maybe too simple). The point is to run each benchmark for each hash mode 5 times with a 3-minute cooldown between each run. This ensures the GPU and other components have time to return to a baseline temperature before executing the next command. I checked the temperature of the GPU first thing in the morning when the machine had been sitting unused overnight. Then I ran a benchmark, checked the temp again, and repeated until it came back to baseline. It returned amazingly fast, under a minute. This is probably due to A) water cooling on the GPU and B) the benchmark command does not take long to complete. However, the GPU temperature is not the temperature of every component in the system. With this in mind, I set the time between commands to 3 minutes to ensure that everything, not just the GPU, had time to return to equilibrium. I suppose I could have run one test a day, allowing the machine to cool completely overnight, but that seemed ridiculous.
The results
Finally! At last we're to the part with the actual data. There’s a lot here. Before poring over every number to every decimal place, you might consider jumping down to the conclusion first. But I'm not your mom, so do whatever you want.
Installations | Driver version | CUDA version |
|---|---|---|
Ubuntu | 595.45.04 | 13.2 |
Fedora | 595.45.04 | 13.2 |
Kali | 595.45.04 | 13.2 |
Arch | 595.45.04 | 13.2 |
Windows | 595.97 | 13.2 |
Averages | 22000 | 13100 | 5600 | 1000 |
|---|---|---|---|---|
All average | 3870.7 kH/s | 4781.7 MH/s | 17438.0 MH/s | 383.8 GH/s |
Ubuntu avg. | 3896.4 kH/s | 4772.5 MH/s | 17491.7 MH/s | 383.4 GH/s |
Fedora avg. | 3864.4 kH/s | 4706.1 MH/s | 17420.8 MH/s | 382.5 GH/s |
Kali avg. | 3856.6 kH/s | 4846.3 MH/s | 17406.4 MH/s | 385.9 GH/s |
Arch avg. | 3854.2 kH/s | 4821.9 MH/s | 17428.5 MH/s | 383.3 GH/s |
Windows avg. | 3879.1 kH/s | 4717.7 MH/s | 17475.3 MH/s | 390.1 GH/s |
Fastest | Ubuntu, Headless, Repo, v6.2.6 3950.0 kH/s | Ubuntu, Full, Release, v7.1.2 4952.7 MH/s | Fedora, Headless, Repo, v6.2.6 17611.1 MH/s | Windows, Full, Source, v7.1.2 393.3 GH/s |
The Top 20 lists are the fastest recorded speeds for each hash mode. So, for this first one, all the speeds for 22000 are sorted descending, then the details are recorded. Ubuntu showed up 9 times in the top 20, the full driver suite showed up 12 times in the top 20, etc.
Top 20 - 22000
OS | Driver | Install | Version |
|---|---|---|---|
Ubuntu - 9 | Full - 12 | Source - 9 | 6.2.6 - 9 |
Windows - 3 | Headless - 8 | Repo - 8 | 7.1.2 - 8 |
Fedora - 3 | Release - 3 | 7.1.2-382 - 3 | |
Arch - 3 | |||
Kali - 2 |
Top 20 - 13100
OS | Driver | Install | Version |
|---|---|---|---|
Ubuntu - 10 | Full - 15 | Release - 9 | 7.1.2 - 12 |
Kali - 7 | Headless - 5 | Source - 8 | 7.1.2-382 - 8 |
Arch - 3 | Repo - 3 |
Top 20 - 5600
OS | Driver | Install | Version |
|---|---|---|---|
Fedora - 7 | Headless - 10 | Release - 8 | 7.1.2 - 8 |
Arch - 6 | Full - 10 | Repo - 7 | 6.2.6 - 7 |
Windows - 4 | Source - 5 | 7.1.2-382 - 5 | |
Ubuntu - 3 |
Top 20 - 1000
OS | Driver | Install | Version |
|---|---|---|---|
Kali - 7 | Full - 17 | Source - 8 | 7.1.2 - 16 |
Windows - 7 | Headless - 3 | Release - 7 | 7.1.2-382 - 4 |
Arch - 3 | Repo - 5 | ||
Fedora - 2 | |||
Ubuntu - 1 |
Cumulative Top 20s
OS | Driver | Install | Version |
|---|---|---|---|
Ubuntu - 23 | Full - 54 | Source - 31 | 7.1.2 - 44 |
Kali - 16 | Headless - 26 | Release - 27 | 7.1.2-382 - 20 |
Arch - 15 | Repo - 23 | 6.2.6 - 16 | |
Windows - 14 | |||
Fedora - 12 |
Absolutely Everything
The complete table, along with plenty of our other publicly available tools, can be found here: https://github.com/shellntel/Installing-Hashcat-for-Peak-Performance-or-an-Ode-to-Overthinking
Conclusion
In the end the specific software configuration doesn't appear to matter all that much, which surprised me. The numbers were not very different, certainly not by any statistically significant amount.
None of the different combinations of OS, driver, or hashcat installation appeared to give an across-the-board advantage. Ubuntu and Fedora performed perfectly adequately and are officially supported by NVIDIA. Arch and Kali did fine as well, but they are not officially supported. They each present the potential for future troubles since the Kali distribution is so heavily customized by that team, even though it is based on Debian. Arch is a completely different animal that had to be installed with the NVIDIA .run files instead of a .deb or .rpm file. Getting the drivers to work on Windows Server can be a little tricky since NVIDIA doesn't officially have drivers for the Server OS (the server OS was selected deliberately since it offered a headless installation option).
Interestingly, Windows did seem to run several degrees hotter than the rest with the same performance. There are several reasons this could be the case, including the fact that "headless" on Windows is not the same as "headless" on Linux, and that the compatible driver was not the exact same version that was used on the other Linux operating systems. However, I never said my testing was completely scientific and did not control for this.
You should install whatever will be most easily supported:
Operating System
If you already have support for Debian or RHEL systems, why on earth would you use Arch on your cracking rig? If you’re a strict Windows shop, my heart breaks for you.
Drivers
NVIDIA's full driver suite vs. their headless driver suite doesn't appear to matter at all. This actually makes sense given that all the other functionality simply isn't being used. It's not running background tasks; it's just code on the machine that isn't needed. At worst, it's a waste of disk space.
Hashcat versions
Install hashcat however you like. Unless you're running highly complex attacks for days on end, the differences probably won't matter that much.
If you do want to get a little in the weeds with it, consider installing hashcat several different ways, then run benchmarks to see which installations handle which hashes best. That means install hashcat from your package manager (if applicable), from the pre-compiled binary, and from source. And if you’re ready to analyze them for trends and vulnerabilities, check out our new tool, Hash Master 1000!
BONUS!!!
How TO install hashcat
Thanks for sticking around to the end! As a thank you, here are some dead-simple steps to install all the hashcats (repo, pre-compiled, source-complied) on a fresh OS installation. These steps assume an NVIDIA GPU and a supported Linux-based operating system
sudo apt update && sudo apt -y upgradeFollow steps from https://developer.nvidia.com/cuda-downloads?target_os=Linux&target_arch=x86_64&Distribution=Ubuntu&target_version=24.04&target_type=deb_local
wget https://developer.download.nvidia.com/compute/cuda/repos/ubuntu2404/x86_64/cuda-ubuntu2404.pinsudo mv cuda-ubuntu2404.pin /etc/apt/preferences.d/cuda-repository-pin-600wget https://developer.download.nvidia.com/compute/cuda/13.2.0/local_installers/cuda-repo-ubuntu2404-13-2-local_13.2.0-595.45.04-1_amd64.debsudo dpkg -i cuda-repo-ubuntu2404-13-2-local_13.2.0-595.45.04-1_amd64.debsudo cp /var/cuda-repo-ubuntu2404-13-2-local/cuda-*-keyring.gpg /usr/share/keyrings/sudo apt-get updatesudo apt-get -y install cuda-toolkit-13-2sudo apt-get install -y nvidia-open***The instructions offer the option of installing either the open source or closed source kernel mode drivers. The 5090 I was using would not work with the closed source drivers, and errors indmesgexplicitly stated that the open kernel modules were required.***
Complete the post-installation requirements found here: https://docs.nvidia.com/cuda/cuda-installation-guide-linux/index.html#post-installation-actions
echo export PATH=\${PATH}:/usr/local/cuda-13.2/bin >> ~/.bashrcecho export LD_LIBRARY_PATH=\${LD_LIBRARY_PATH}:/usr/local/cuda-13.2/lib64 >> ~/.bashrc
sudo rebootsudo apt update && sudo apt install hashcat 7zipmkdir hashcat-release; cd hashcat-releasewget https://github.com/hashcat/hashcat/releases/download/v7.1.2/hashcat-7.1.2.7z7z x hashcat-7.1.2.7zmkdir ../hashcat-source; cd ../hashcat-sourcegit clone https://github.com/hashcat/hashcat.gitcd hashcatmake clean && makecd ~echo Thanks, Chad!