 |
Menu |
 |
|
 Home |
| |
|
 Discussions |
| |
|
 Tools |
| |
|
| Affiliates |
| |
|
 Content |
| |
|
 Info |
| | |
|
|
|
|
|
User Info |
|
 Membership:
 Latest: MichaelSnaRe
 New Today: 0
 New Yesterday: 0
 Overall: 9144
 People Online:
 Visitors: 79
 Members: 0
 Total: 79
|
|
|
|
|
|
Full disclosure |
|
|
|
 |
|
 |
 |
|
 |
IT Security and Insecurity Portal |
|
|
VERY IMPORTANT SALTED HASH!!!! |
|
 Posted: Sat Dec 13, 2008 3:34 am |
 |
|
| FBIRyan |
| Advanced user |
 |
|
| Joined: Dec 11, 2008 |
| Posts: 50 |
|
|
|
 |
|
 |
|
This md5(md5($salt).md5($pass)) hash means the WORLD to me! My dictionaries couldn't crack it though..  Whoever cracks this one is my hero!  Seriously though, I really need this hash to be cracked. At least give it a try. 
Also the hash doesn't contain any special characters. Just the alphabet and numbers.
Md5: 893bac0dbb511a580e28f8a6805aa2b3
Salt: Xdwe{
Big huge forever thanks in return,
Ryan |
|
Last edited by FBIRyan on Sun Dec 14, 2008 1:56 am; edited 1 time in total |
|
|
|
|
|
|
|
| Posted: Sat Dec 13, 2008 7:02 pm |
|
|
| FBIRyan |
| Advanced user |
|
|
| Joined: Dec 11, 2008 |
| Posts: 50 |
|
|
|
|
|
|
|
| If you brute force it, tell me what you did. That way that's one less thing I have to try myself. I'm at 7 digits with lower case alphabet and numbers. So I've tried 1-6 with lower case alphabet and numbers.(Something you don't have to do now) My computer is slow though.(Or at least the program I'm using is) Any help is very much appreciated.(Even if you don't crack it) |
|
|
|
|
|
|
|
|
| Posted: Sat Dec 13, 2008 9:53 pm |
|
|
| Chb |
| Valuable expert |
 |
|
| Joined: Jul 23, 2005 |
| Posts: 206 |
| Location: Germany |
|
|
|
|
|
|
Wait a second... md5(md5($salt) . md5($pass))? In my opinion it's nearly impossible to crack such a hash. You already know the half of the password, okay. But actually the "password" you're searching (the hash of the "real password") contains 32 digits.
This means your "real" password is salted with a 32 byte long salt.
Due to the fact that one digit of a hash may be 0 to f, that makes a number of... 16^32 or 3,4028236692093846346337460743177e+38 possibilities, if I recall right.
Do you really want to try this? |
|
|
|
|
|
|
|
|
| Posted: Sat Dec 13, 2008 11:47 pm |
|
|
| FBIRyan |
| Advanced user |
|
|
| Joined: Dec 11, 2008 |
| Posts: 50 |
|
|
|
|
|
|
|
| Chb wrote: | Wait a second... md5(md5($salt) . md5($pass))? In my opinion it's nearly impossible to crack such a hash. You already know the half of the password, okay. But actually the "password" you're searching (the hash of the "real password") contains 32 digits.
This means your "real" password is salted with a 32 byte long salt.
Due to the fact that one digit of a hash may be 0 to f, that makes a number of... 16^32 or 3,4028236692093846346337460743177e+38 possibilities, if I recall right.
Do you really want to try this? |
O.o;
You didn't do your research before you posted, did you? Programs, such as PasswordPro, can do it in reverse. They take the salt and hash it, then take the pass and hash it, then hash them together.(Or something like that) I've cracked IPB passwords within seconds.  But I've only done them with dictionaries.. So are you saying when you brute force an IPB hash that it's gonna contain 32 digits? I'll prove you wrong. I've got a 6 digit password in an IPB hash format. I'll try to brute force it, with the brute forcer set to 6 digits. BRB |
|
|
|
|
|
|
|
|
| Posted: Sat Dec 13, 2008 11:52 pm |
|
|
| FBIRyan |
| Advanced user |
|
|
| Joined: Dec 11, 2008 |
| Posts: 50 |
|
|
|
|
|
|
|
C:\Documents and Settings\user\Desktop\Assassin's Creed\XtremeBrute>yummy.exe se
t.ini hash.txt
aed8c8c761d0e73e4d94d2553e0f245f:hellos
All passwords found!
Thus, you are wrong. 
So yes, whoever can help(And knows how) please do. |
|
|
|
|
| Posted: Sun Dec 14, 2008 12:28 pm |
|
|
| gyan007 |
| Advanced user |
|
|
| Joined: Oct 17, 2008 |
| Posts: 106 |
|
|
|
|
|
|
|
Dictionary attack relies opn the hashing method being known, and all variables, including the password.. Since it hashes a password and matches it to the unknown password.. Then with a word list u can try most common passwords  |
|
|
|
|
| Posted: Sun Dec 14, 2008 1:13 pm |
|
|
| Chb |
| Valuable expert |
|
|
| Joined: Jul 23, 2005 |
| Posts: 206 |
| Location: Germany |
|
|
|
|
|
|
Uh, mea culpa.
The 16^32 combinations aren't that wrong (if you had to crack ALL possible MD5s), but I didn't think about easily cracking the hashes by dictionary or bruteforce (and that way you'd just have to concatenate both hashes and MD5 that again)... Seems like I was too tired... :/
Sorry for the incidence. |
|
|
|
|
| Posted: Sun Dec 14, 2008 2:42 pm |
|
|
| FBIRyan |
| Advanced user |
|
|
| Joined: Dec 11, 2008 |
| Posts: 50 |
|
|
|
|
|
|
|
| Chb wrote: | Uh, mea culpa.
The 16^32 combinations aren't that wrong (if you had to crack ALL possible MD5s), but I didn't think about easily cracking the hashes by dictionary or bruteforce (and that way you'd just have to concatenate both hashes and MD5 that again)... Seems like I was too tired... :/
Sorry for the incidence. |
Haha, it's cool mate. I know no ones gonna wanna dedicate their computer to help me brute force this Md5 hash. So wish me luck. |
|
|
|
|
www.waraxe.us Forum Index -> All other hashes
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
All times are GMT
Page 1 of 1
|
|
|
|
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|
|
