Automic VaultAutomic Vault

brew

Install name-that-hash with Homebrew, MacPorts, Nix

Modern hash identification system. Version 1.11.0 via Homebrew; verified 2026-07-05.

install

Additional install commands

macOS

Homebrewverified · 100%
brew install name-that-hash

local Homebrew formula metadata

MacPortsverified · 94%
sudo port install name-that-hash

MacPorts ports tree · security/name-that-hash/Portfile · source: api.github.com

overview

Package summary

Modern hash identification system

Commands and aliases

  • name-that-hash
  • nth

history

Project history and usage

Name That Hash is a Python hash-identification CLI and web app for mapping unknown hashes to likely algorithms and cracking-tool modes.

Project history

The repository was created on 2021-01-13, and PyPI release history begins with 0.0.1 on 2021-01-24. The project positioned itself as a modern successor to older hash identifiers, emphasizing popularity-ranked results, hash summaries, accessible output, JSON/API use, and Hashcat/John the Ripper mode information.

Release 1.10.0 on 2021-06-13 added more than 50 hashes and an automated test matrix for hash database correctness; release 1.11.0 on 2022-11-17 added and verified hash patterns including yescrypt, BitLocker, RACF, Argon2, and other community-contributed entries.

Adoption history

The project reached security distributions and package managers beyond PyPI. Its README lists REMnux, AUR, MacPorts, and Homebrew, and Kali documents the `name-that-hash` and `nth` binaries for identifying MD5, SHA256, and more than 300 other hash types.

Repository metadata consulted on 2026-07-01 showed 1,658 GitHub stars and 110 forks. Homebrew listed 348 installs over the prior 365 days, which is modest but plausible for a specialist CTF/forensics helper.

How it is used

The practical loop is simple: pass one hash with `nth --text`, pass a newline-delimited file with `nth --file`, or use greppable/JSON output for automation. Kali's help output also documents base64 decoding, accessible mode, and an extreme mode that searches for hashes inside larger strings.

Package nerds use it before cracking: identify candidate formats, choose likely Hashcat or John modes, then feed those guesses into heavier cracking or forensic tooling. The JSON output makes it scriptable in pipelines.

Why package nerds care

Name That Hash matters because it packages the messy regex database problem with better output priorities and cracking-tool context. It is not a cryptographic primitive; it is a triage tool that saves time before using Hashcat, John, or CTF tooling.

Timeline

  • 2021-01-13: GitHub repository created.
  • 2021-01-24: PyPI release 0.0.1 published.
  • 2021-06-13: 1.10.0 release adds more than 50 hashes and an automated test matrix.
  • 2022-11-17: 1.11.0 release published on GitHub and PyPI.
  • 2026-07-01: Homebrew Formulae page listed 348 installs over the prior 365 days.

Related projects

  • HashID
  • Hash-Identifier
  • Hashcat
  • John the Ripper
  • REMnux
  • Kali Linux

security posture

Risk level: green

narrow executable package without higher-risk signals.

Risk classifier

green risk · low confidence · appliance

Why

  • narrow executable package without higher-risk signals

Signals

  • metadata:no-higher-risk-signals

Install behavior

  • No Homebrew post-install hook is recorded in formula metadata.
  • Homebrew bottle metadata is available for 1 platform targets.
  • Installs with 1 runtime dependencies.

Recommended review

Before unattended agent use, check whether the tool reads plaintext credentials, writes remote state, publishes artifacts, or shells out to plugins.

executables

Installed executables

CommandKindExposureNote
name-that-hashcliglobal executable
nthcliglobal executable

freshness

Version and freshness

These signals separate page generation age, package-manager activity, and upstream release comparison. Version lag is warned only when an evidence URL and comparable versions are present.

page generated2026-07-08
manager version1.11.0
manager updated2026-07-05
local dataok
upstreamnot checked
latest detectednot detected

https://nth.skerritt.blog/

install metadata

Package metadata

Package keybrew:name-that-hash
Version1.11.0
Package managerHomebrew
Package manager pagehttps://formulae.brew.sh/formula/name-that-hash
Homepagehttps://nth.skerritt.blog/
Repositoryhttps://github.com/bee-san/Name-That-Hash
Upstream docshttps://github.com/bee-san/Name-That-Hash#readme
LicenseGPL-3.0-or-later
Source archivehttps://files.pythonhosted.org/packages/7a/d6/5bea2b09a8b4dbfd92610432dbbcdda9f983be3de770a296df957fed5d06/name_that_hash-1.11.0.tar.gz
Last updated2026-07-05T00:14:30+09:00
Pulseupdated
Dependenciespython@3.14
Bottleavailable (on all)
Homebrew post-installnot defined
Servicenone declared

registry facts

Source database details

Source DatabaseHomebrew formula API
Taphomebrew/core
Full Namename-that-hash
Version Scheme0
Revision2
Head VersionHEAD
Bottle Stable Root URLhttps://ghcr.io/v2/homebrew/core
Deprecatedno
Disabledno
Keg Onlyno
URL Keys
  • head
  • stable

source database matches

Other package-manager records

Matches are pulled from external package-manager indexes and kept separate from local Automic Vault package links.

MacPorts95%

name-that-hash

sudo port install name-that-hash
  • normalized package name match
  • Matched by: Name That Hash
MacPorts ports tree · api.github.com · MacPorts ports tree: security/name-that-hash/Portfile from https://api.github.com/repos/macports/macports-ports/git/trees/master?recursive=1
Nix92%

nth

nix profile install nixpkgs#nth
  • installed executable or alias match
  • Matched by: Nth
nixpkgs package indexes · raw.githubusercontent.com · nixpkgs package indexes: nth from https://raw.githubusercontent.com/NixOS/nixpkgs/master/pkgs/top-level/all-packages.nix

source trail

Generated from repository data

This page is generated by av-web from the private package SQLite artifact built by scripts/generate-pkg-sqlite.py.

Used sources

  • Geiger risk classifier
  • Nucleus package database
  • av.db category and tag curation
  • cross-ecosystem install command graph
  • curated package history
  • external package-manager database matches
  • package relationship graph
  • package version freshness
  • package-page enrichment