|
|
|
|
Menu |
|
|
Home |
| |
|
Discussions |
| |
|
Tools |
| |
|
Affiliates |
| |
|
Content |
| |
|
Info |
| | |
|
|
|
|
|
User Info |
|
Membership:
Latest: MichaelSnaRe
New Today: 0
New Yesterday: 0
Overall: 9144
People Online:
Visitors: 82
Members: 0
Total: 82
|
|
|
|
|
|
Full disclosure |
|
|
|
|
|
|
|
|
|
IT Security and Insecurity Portal |
|
|
172 byte hashes - what produces them |
|
Posted: Sun Dec 06, 2009 4:26 pm |
|
|
zerocred |
Beginner |
|
|
Joined: Oct 08, 2009 |
Posts: 4 |
|
|
|
|
|
|
|
I have some hashes length 172 characters
e.g.
Code: |
vEu+JxbYYGrdbg1AFNnxeFafzAZ7eBpWQZsZtT+WHNYp5WE6/v1zKn7nUMNBy+d/MtuHZ51F8qv75kO5q15scRc+cCDvBpy5RlSkX4cuiC29Wb/b42BAvNe56rsf5qHCN4nHmITrfGqu0cS/HPaAKC9M+WL3tqYWH6nS3yXF0as=
|
I know what goes in to make the hash (it is a signature on (account, data_str, number, time) its on a website javascript or ASPX...
I want to emulate it. Does anyone know what type of hash algorithm produces this and if I can get it in Perl or something? |
|
|
|
|
Posted: Sun Dec 06, 2009 11:15 pm |
|
|
tehhunter |
Valuable expert |
|
|
Joined: Nov 19, 2008 |
Posts: 261 |
|
|
|
|
|
|
|
From a glance it looked like Base64, but trying to decode it with that did nothing.
I'm not sure. Are the hashes variable length or fixed length? That'd be a good starting point. It's just very hard to guess from one single example. |
|
|
|
|
Posted: Mon Dec 07, 2009 7:33 pm |
|
|
Turbo_boy |
Regular user |
|
|
Joined: May 16, 2009 |
Posts: 7 |
Location: Netherlands |
|
|
|
|
|
|
I know blowfish likes similar but hard to say if this is blowfish |
|
|
|
|
Posted: Mon Dec 07, 2009 10:21 pm |
|
|
vince213333 |
Advanced user |
|
|
Joined: Aug 03, 2009 |
Posts: 737 |
Location: Belgium |
|
|
|
|
|
|
Base 64 returns some weird binary file, but I'm not that enrolled in that kind of things I'm afraid |
|
|
|
|
|
i am concluding it is proprietary |
|
Posted: Wed Dec 09, 2009 4:09 pm |
|
|
zerocred |
Beginner |
|
|
Joined: Oct 08, 2009 |
Posts: 4 |
|
|
|
|
|
|
|
Thanks for the comments.
I think it is proporitary activeX IE addon that generates it.
It always seems to be 172 characters, with variable length input string - the parameters passed are just strung together and then passed to the signing function.
I will try to call it from perlscript and see how I get on - that will save me emulating it - if I can just call the real one! |
|
|
|
|
www.waraxe.us Forum Index -> All other hashes
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum
|
All times are GMT
Page 1 of 1
|
|
|
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|
|
|