 |
|
 |
 |
Menu |
 |
|
 Home |
| |
|
 Discussions |
| |
|
 Tools |
| |
|
| Affiliates |
| |
|
 Content |
| |
|
 Info |
| | |
|
|
|
|
|
User Info |
|
 Membership:
 Latest: MichaelSnaRe
 New Today: 0
 New Yesterday: 0
 Overall: 9144
 People Online:
 Visitors: 82
 Members: 0
 Total: 82
|
|
|
|
|
|
Full disclosure |
|
|
|
 |
|
 |
 |
|
 |
IT Security and Insecurity Portal |
|
|
A couple of beginner questions relating to phpbb & MD5 |
|
 Posted: Mon Feb 12, 2007 11:42 am |
 |
|
| raoul_duke |
| Beginner |
 |
|
| Joined: Feb 12, 2007 |
| Posts: 3 |
|
|
|
 |
|
 |
|
I've successfully captured some MD5 hashes from a phpbb 2.0.6 forum & submitted the hashes to plain-text.info, two of the three hashes were succesfully cracked but the one I really needed decypted came back with the result "not found"
My questions are roughly as follows:
I've read that "salt" is sometmes added to the hashes to make them more secure is it possible that the hash I was unable to decrypt may have had salt added to it somehow? (hash was from a standard phpbb 2.0.6 forum running on linux/apache)
Is it more likely now seeing as plain-text.info couldent decrypt the hash that it has weird characters in it? (i'm 99% sure the original password would've been in an english char set if that helps?)
Is it worthwhile creating or obtaining my own rainbow tables & using the script linked from plain-text.info to attmpt to crack my hash? Or, is this a bit out of my league as a newcomer to md5 cracking?
This is the hash I cant decrypt, i'd appreciate it if you have the facilities to decrypt it to gice it a shot for me plz:
54723778e6667ca722233bc79572f808 |
|
|
|
|
|
|
Re: A couple of beginner questions relating to phpbb & M |
|
| Posted: Mon Feb 12, 2007 10:57 pm |
|
|
| timmenton |
| Regular user |
|
|
| Joined: Jan 28, 2007 |
| Posts: 7 |
|
|
|
|
|
|
|
| raoul_duke wrote: | | 54723778e6667ca722233bc79572f808 |
How exactly did you obtain the hash?
I just don't want you getting confused with session id's.
Do you have the admin's password and can you access FTP? |
|
|
|
|
|
|
|
|
| Posted: Tue Feb 13, 2007 7:30 am |
|
|
| raoul_duke |
| Beginner |
|
|
| Joined: Feb 12, 2007 |
| Posts: 3 |
|
|
|
|
|
|
|
Thanks for taking the time to reply timmenton. It's not a session id (they come after url starting with sid?" A friend of mine had admin access to the forum i'm targeting & sent me the sql dump from the phpbb backup utility. Sadly he no longer has (admin) access to the forum.
I've looked through the sql file again & it's definitely an md5 hash from a phpbb forum (other hashes laid out in the same place for other users decrypted fine when entered into plain-text.info) . I'm not 100% sure of the phpbb version, I looked for the docs/changelog.html file but as far as I can tell it's not on the server (I tried lots of different spellings try & find directory.) My best guess is that it's either a 2.0.18 or a 2.0.19 if thats of any importance to how the hash was created in phpbb?
It's a heavily modded forum too, so I suspect there may be other ways to compromise it, but i'm not that clever yet! |
|
|
|
|
|
www.waraxe.us Forum Index -> Newbies corner
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
All times are GMT
Page 1 of 1
|
|
|
|
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|
|
|
