 |
|
 |
 |
|
 |
IT Security and Insecurity Portal |
|
 Posted: Sun Sep 21, 2008 9:22 am |
 |
|
| pexli |
| Valuable expert |
 |
|
| Joined: May 24, 2007 |
| Posts: 665 |
| Location: Bulgaria |
|
|
 |
|
 |
|
|
|
|
|
| Posted: Sun Sep 21, 2008 9:34 am |
|
|
| ayvegh |
| Regular user |
 |
|
| Joined: Sep 17, 2008 |
| Posts: 12 |
|
|
|
|
|
|
|
That's the thing: I don't have FTP access, but I have access to the FTP users list, so I know that the Admin whose password I am searching for's FTP user id is indeed "10001". However, that does not help me with getting FTP access.
Any other ideas, aside from seeing and waiting for my current method of logging the un-salted MD5 from the login to get his MD5, then finding a hash table somewhere that has it?
Thanks again,
ayvegh |
|
|
|
|
| Posted: Sun Sep 21, 2008 10:10 am |
|
|
| pexli |
| Valuable expert |
|
|
| Joined: May 24, 2007 |
| Posts: 665 |
| Location: Bulgaria |
|
|
|
|
|
|
| Login to database and get login:hash:salt of user with id=1.Try do decrypt. |
|
|
|
|
| Posted: Sun Sep 21, 2008 10:16 am |
|
|
| ayvegh |
| Regular user |
|
|
| Joined: Sep 17, 2008 |
| Posts: 12 |
|
|
|
|
|
|
|
| koko wrote: | | Login to database and get login:hash:salt of user with id=1.Try do decrypt. |
I already have the complete database as a precaution.
What method can I use to decrypt the salted hash? Unsalted hashes are hard enough as it is... 
Thanks again,
ayvegh |
|
|
|
|
| Posted: Sun Sep 21, 2008 10:25 am |
|
|
| pexli |
| Valuable expert |
|
|
| Joined: May 24, 2007 |
| Posts: 665 |
| Location: Bulgaria |
|
|
|
|
|
|
Try with passwordspro
md5(md5($pass)) [PHP] - used with e107.
md5(md5($pass).$salt) [PHP] - used with vBulletin 3.x.x.
md5(md5($salt).md5($pass)) [PHP] - used with IPB 2.x.x.
sha1($username.$pass) [PHP] - used with SMF 1.1.x. |
|
|
|
|
| Posted: Sun Sep 21, 2008 1:42 pm |
|
|
| ayvegh |
| Regular user |
|
|
| Joined: Sep 17, 2008 |
| Posts: 12 |
|
|
|
|
|
|
|
| koko wrote: | Try with passwordspro
md5(md5($pass)) [PHP] - used with e107.
md5(md5($pass).$salt) [PHP] - used with vBulletin 3.x.x.
md5(md5($salt).md5($pass)) [PHP] - used with IPB 2.x.x.
sha1($username.$pass) [PHP] - used with SMF 1.1.x. |
Alright, it's running.
I'll have to get it running on my other machine to get some dedicated processing power, but thanks for all your help!
ayvegh |
|
|
|
|
|
 |
|
 |
| Posted: Sun Sep 21, 2008 3:47 pm |
|
|
| ayvegh |
| Regular user |
|
|
| Joined: Sep 17, 2008 |
| Posts: 12 |
|
|
|
|
|
|
|
haha What a joke!
I picked up the password in the preliminary attack!
For my security, I won't divulge the password, but it was a six digit number! 
Now, it seems this Admin was smarter than I thought, and has yet a third (or possibly more) password, since both FTP and SSH are giving me "access denied".
I think I'll get into the server eventually (which is my goal), but for now, userid 1 is good enough.
Thanks again for all of your help,
ayvegh
PS: If anyone reading this thread would like to know how I accomplished this, please post here saying so, and I will outline exactly what I did (more or less)
PPS: If anyone can crack this MD5 hash: 69efd11f1b9b804c8043c64119fa5546
I will offer that person a cash reward, pending confirmation of the crack validity.
E-mail the source for the hash to ayveghemail-hashcrack@yahoo.com, and include information on how to contact you back for the reward. |
|
|
|
|
|
www.waraxe.us Forum Index -> vBulletin Board
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
All times are GMT
Page 2 of 2
Goto page Previous1, 2
|
|
|
|
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|
Discussions
Tools
Content
Info
Membership:
Latest: 
New Today: 0
New Yesterday: 0
Overall: 9144
People Online:
Visitors: 65
Members: 0
Total: 65
