# Install name-that-hash with Homebrew, MacPorts, Nix

Modern hash identification system. Version 1.11.0 via Homebrew; verified 2026-07-05.

## Install

```sh
sudo av install brew:name-that-hash
```

Additional install commands:

### macOS

- Homebrew (100%):

```sh
brew install name-that-hash
```

  Evidence: local Homebrew formula metadata

- MacPorts (94%):

```sh
sudo port install name-that-hash
```

  Evidence: MacPorts ports tree: security/name-that-hash/Portfile from https://api.github.com/repos/macports/macports-ports/git/trees/master?recursive=1

### Linux

- Nix (92%):

```sh
nix profile install nixpkgs#nth
```

  Evidence: nixpkgs package indexes: nth from https://raw.githubusercontent.com/NixOS/nixpkgs/master/pkgs/top-level/all-packages.nix

## Package facts

- **Package key:** brew:name-that-hash
- **Package manager:** Homebrew
- **Package manager page:** <https://formulae.brew.sh/formula/name-that-hash>
- **Version:** 1.11.0
- **Source summary:** Modern hash identification system
- **Homepage:** <https://nth.skerritt.blog/>
- **Repository:** <https://github.com/bee-san/Name-That-Hash>
- **Upstream docs:** <https://github.com/bee-san/Name-That-Hash#readme>
- **License:** GPL-3.0-or-later
- **Source archive:** <https://files.pythonhosted.org/packages/7a/d6/5bea2b09a8b4dbfd92610432dbbcdda9f983be3de770a296df957fed5d06/name_that_hash-1.11.0.tar.gz>
- **Last updated:** 2026-07-05T00:14:30+09:00
- **Generated:** 2026-07-08T07:18:31+00:00

## Executables

- name-that-hash (cli)
- nth (cli)
- name-that-hash (alias)
- nth (alias)

## Dependencies

- python@3.14

## Install behavior

- Post-install hook: not defined
- Bottle: available on all

## Freshness

- Page generated: 2026-07-08
- Package-manager version: 1.11.0
- Package-manager updated: 2026-07-05
- Local data: ok
- Upstream repository: https://nth.skerritt.blog/
- info: Release/tag comparison is only available for GitHub repositories.
## Project history and usage

Name That Hash is a Python hash-identification CLI and web app for mapping unknown hashes to likely algorithms and cracking-tool modes.

### Project history

The repository was created on 2021-01-13, and PyPI release history begins with 0.0.1 on 2021-01-24. The project positioned itself as a modern successor to older hash identifiers, emphasizing popularity-ranked results, hash summaries, accessible output, JSON/API use, and Hashcat/John the Ripper mode information.

Release 1.10.0 on 2021-06-13 added more than 50 hashes and an automated test matrix for hash database correctness; release 1.11.0 on 2022-11-17 added and verified hash patterns including yescrypt, BitLocker, RACF, Argon2, and other community-contributed entries.

### Adoption history

The project reached security distributions and package managers beyond PyPI. Its README lists REMnux, AUR, MacPorts, and Homebrew, and Kali documents the `name-that-hash` and `nth` binaries for identifying MD5, SHA256, and more than 300 other hash types.

Repository metadata consulted on 2026-07-01 showed 1,658 GitHub stars and 110 forks. Homebrew listed 348 installs over the prior 365 days, which is modest but plausible for a specialist CTF/forensics helper.

### How it is used

The practical loop is simple: pass one hash with `nth --text`, pass a newline-delimited file with `nth --file`, or use greppable/JSON output for automation. Kali's help output also documents base64 decoding, accessible mode, and an extreme mode that searches for hashes inside larger strings.

Package nerds use it before cracking: identify candidate formats, choose likely Hashcat or John modes, then feed those guesses into heavier cracking or forensic tooling. The JSON output makes it scriptable in pipelines.

### Why package nerds care

Name That Hash matters because it packages the messy regex database problem with better output priorities and cracking-tool context. It is not a cryptographic primitive; it is a triage tool that saves time before using Hashcat, John, or CTF tooling.

### Timeline

- 2021-01-13: GitHub repository created.
- 2021-01-24: PyPI release 0.0.1 published.
- 2021-06-13: 1.10.0 release adds more than 50 hashes and an automated test matrix.
- 2022-11-17: 1.11.0 release published on GitHub and PyPI.
- 2026-07-01: Homebrew Formulae page listed 348 installs over the prior 365 days.

### Related projects

- HashID
- Hash-Identifier
- Hashcat
- John the Ripper
- REMnux
- Kali Linux

### Sources

- <https://api.github.com/repos/bee-san/Name-That-Hash>
- <https://api.github.com/repos/bee-san/Name-That-Hash/releases?per_page=5>
- <https://formulae.brew.sh/formula/name-that-hash>
- <https://github.com/bee-san/Name-That-Hash>
- <https://pypi.org/project/name-that-hash/>
- <https://www.kali.org/tools/name-that-hash/>


## Security Notes

narrow executable package without higher-risk signals.

- **Geiger risk:** green / low
- narrow executable package without higher-risk signals

## Source Database Details

- **Source Database:** Homebrew formula API
- **Tap:** homebrew/core
- **Full Name:** name-that-hash
- **Version Scheme:** 0
- **Revision:** 2
- **Head Version:** HEAD
- **Bottle Stable Root URL:** <https://ghcr.io/v2/homebrew/core>
- **Deprecated:** no
- **Disabled:** no
- **Keg Only:** no
- **URL Keys:** head, stable

## Other Package-Manager Records

- MacPorts - name-that-hash: normalized package name match | MacPorts ports tree: security/name-that-hash/Portfile from https://api.github.com/repos/macports/macports-ports/git/trees/master?recursive=1
- Nix - nth: installed executable or alias match | nixpkgs package indexes: nth from https://raw.githubusercontent.com/NixOS/nixpkgs/master/pkgs/top-level/all-packages.nix


## Related links

- [Terminal utility packages](https://www.automicvault.com/pkg/terminal-utilities/) - Matched terminal and command-line workflow metadata.
- [Networking and protocol packages](https://www.automicvault.com/pkg/networking-protocol-tools/) - Matched network, protocol, or remote-service metadata.
- [Security and crypto packages](https://www.automicvault.com/pkg/security-crypto-tools/) - Matched security, identity, cryptography, password, signing, or certificate metadata.
- [Homebrew utility packages](https://www.automicvault.com/pkg/brew-utility-packages/) - Matched Homebrew package provider.
- [python@3.14](https://www.automicvault.com/pkg/brew/python-3-14/) - Runtime dependency declared by Homebrew.
- [checkpwn](https://www.automicvault.com/pkg/brew/checkpwn/) - Shares av.db curated category or tags: cli, passwords, security.
- [passwdqc](https://www.automicvault.com/pkg/brew/passwdqc/) - Shares av.db curated category or tags: cli, passwords, security.
- [search-that-hash](https://www.automicvault.com/pkg/brew/search-that-hash/) - Shares av.db curated category or tags: cli, hash-identification, passwords, security.
- [cracklib](https://www.automicvault.com/pkg/brew/cracklib/) - Shares av.db curated category or tags: cli, passwords, security.
- [crunch](https://www.automicvault.com/pkg/brew/crunch/) - Shares av.db curated category or tags: cli, passwords, security.
- [diceware](https://www.automicvault.com/pkg/brew/diceware/) - Shares av.db curated category or tags: cli, passwords, security.
- [pwgen](https://www.automicvault.com/pkg/brew/pwgen/) - Shares av.db curated category or tags: cli, passwords, security.
- [wifi-password](https://www.automicvault.com/pkg/brew/wifi-password/) - Shares av.db curated category or tags: cli, passwords, security.
- [pywhat](https://www.automicvault.com/pkg/brew/pywhat/) - Both packages touch the same language runtime or ecosystem. Shared terms: cli, forensics, python, python-3-14, security.

## Combined YAML source

View the package source record on GitHub. [combined/name-that-hash.yml](https://github.com/automic-vault/db/blob/main/combined/name-that-hash.yml)


## Sources

- Nucleus package database
- Geiger risk classifier
- package-page enrichment
- curated package history
- package version freshness
- av.db category and tag curation
- package relationship graph
- external package-manager database matches
- cross-ecosystem install command graph
