This free online tool helps security professionals and ethical hackers create, test, and optimize Hashcat rules for password security testing and recovery. Generate custom password mutation rules to enhance your password cracking strategies.
Security Testing
Test password strength and create effective security policies
Optimized Rules
Generate efficient rules that maximize password cracking success
Customizable
Create tailored rules for specific password patterns and policies
Mobile Friendly
Works perfectly on all devices - desktop, tablet, and mobile
Note: This tool is intended for legitimate security testing, password recovery, and educational purposes only. Always ensure you have proper authorization before testing any systems.
Rule Library
Basic Rules
Case Rules
Substitution
Advanced
Custom Rules
Rule Templates
Saved Rules
History
Rule Builder
0
Rules
0
Complexity
0s
Est. Time
0%
Success Rate
No rules selected yet. Add rules from the left panel or use a template.
Rule Preview
# Your rules will appear here
Test Rules
Batch Processing
Input Words
Output
# Test results will appear here
Input Wordlist
Output
Frequently Asked Questions
What are Hashcat rules?
Hashcat rules are instructions that modify password candidates during password cracking attempts. They can perform operations like changing case, substituting characters, appending/prepending text, and more. These rules help generate password variations that might match actual user passwords.
How do I use this Hashcat Rules Generator?
Simply select rules from the Rule Library on the left, or use predefined templates. Your selected rules will appear in the Rule Builder panel. You can test them with sample words, optimize the rule order, and export the final rule set for use with Hashcat.
Is this tool free to use?
Yes, this Hashcat Rules Generator is completely free to use. There are no limitations or premium features - all functionality is available to everyone.
Can I save my rule sets for later use?
Yes, you can save your rule sets using the "Save Rules" button. Your saved rules will be stored in your browser's local storage and will be available the next time you visit the tool.
What is the purpose of password mutation rules?
Password mutation rules help security professionals test password strength by generating common password variations. This is useful for penetration testing, security audits, and password recovery when authorized. They help identify weak passwords that follow predictable patterns.
Is it legal to use this tool?
This tool is legal when used for legitimate purposes such as security testing of your own systems, educational purposes, or password recovery with proper authorization. Unauthorized use against systems you don't own or without explicit permission is illegal in most jurisdictions.