 |
|
 |
 |
Menu |
 |
|
 Home |
| |
|
 Discussions |
| |
|
 Tools |
| |
|
| Affiliates |
| |
|
 Content |
| |
|
 Info |
| | |
|
|
|
|
|
User Info |
|
 Membership:
 Latest: MichaelSnaRe
 New Today: 0
 New Yesterday: 0
 Overall: 9144
 People Online:
 Visitors: 46
 Members: 0
 Total: 46
|
|
|
|
|
|
Full disclosure |
|
|
|
 |
|
 |
 |
|
 |
IT Security and Insecurity Portal |
|
|
4 requests |
|
 Posted: Mon Jan 26, 2009 7:43 pm |
 |
|
| Michaelwt |
| Regular user |
 |
|
| Joined: Jan 26, 2009 |
| Posts: 5 |
|
|
|
 |
|
 |
|
|
Last edited by Michaelwt on Wed Jan 28, 2009 7:55 pm; edited 1 time in total |
|
|
|
| Posted: Mon Jan 26, 2009 8:40 pm |
|
|
| tehhunter |
| Valuable expert |
|
|
| Joined: Nov 19, 2008 |
| Posts: 261 |
|
|
|
|
|
|
|
| I'm trying them though its looking right now like these are too hard to be cracked. |
|
|
|
|
| Posted: Mon Jan 26, 2009 8:46 pm |
|
|
| Michaelwt |
| Regular user |
|
|
| Joined: Jan 26, 2009 |
| Posts: 5 |
|
|
|
|
|
|
|
|
Last edited by Michaelwt on Wed Jan 28, 2009 7:54 pm; edited 1 time in total |
|
|
|
|
|
|
|
| Posted: Mon Jan 26, 2009 8:56 pm |
|
|
| tehhunter |
| Valuable expert |
|
|
| Joined: Nov 19, 2008 |
| Posts: 261 |
|
|
|
|
|
|
|
| Michaelwt wrote: | f3ca272d60f4c96aa19160e511a571a3
36be21503816e369b81a187549bdf15e
65df41512f4b81ac84613f3146577530
a274f4816032c80e2a4f13770de9e47a
2617ae05fe5b9cacdaefe37a3aaa52ef
ae2abf1eede8b80a24315ec164ba7789
2e9071b4a839c968c1919d0c14af728d
17d792e2b6a2ed405608fcb89c1128b4
a89adfda2bad47bf1b297dfbf683234b
563a2e10220c5ea388b7303ae15dfe6a
f1df92c9bf410be95f46e506888cf388
447646446f7f688e98222cf368f2b997
a519c78804599e1034be5dd431b0a572
61baf5b1ed7439bf83c3fc629cb4a0c5
Direct from a DB with over 12,000 users. I cant crack them neither, I cant imagine all these words are that complicated though :S. Ive tried hundreds in the online crackers but no joy. If I change a users password via admin tools to say jesus123 though I can then get the hash and crack it easily. Or if two users have the same passwords then they are the same hashes, so they cant be twisted. |
If you post as many as you can the odds I can crack some of them gets greatly increased. I'm trying these ones now (stopped my last run). |
|
|
|
|
|
|
|
|
| Posted: Mon Jan 26, 2009 9:09 pm |
|
|
| Michaelwt |
| Regular user |
|
|
| Joined: Jan 26, 2009 |
| Posts: 5 |
|
|
|
|
|
|
|
The hash for the password "12345" is shown as cfa7a1bb3aaa9a4513b628c0ade18b4c
Which obviously isn't the md5 for 12345
You think they may be double encrypted? |
|
|
|
|
| Posted: Mon Jan 26, 2009 9:13 pm |
|
|
| tehhunter |
| Valuable expert |
|
|
| Joined: Nov 19, 2008 |
| Posts: 261 |
|
|
|
|
|
|
|
I think they are salted, in which case it becomes exponentially more hard / impossible to crack without knowing the salt / salting scheme. Anyway you could find that?
* I tried rehashing the hash for 12345 a bunch of iterations and couldn't get anything similar. |
|
|
|
|
| Posted: Mon Jan 26, 2009 9:24 pm |
|
|
| Michaelwt |
| Regular user |
|
|
| Joined: Jan 26, 2009 |
| Posts: 5 |
|
|
|
|
|
|
|
|
Last edited by Michaelwt on Wed Jan 28, 2009 7:53 pm; edited 1 time in total |
|
|
|
| Posted: Mon Jan 26, 2009 9:30 pm |
|
|
| tehhunter |
| Valuable expert |
|
|
| Joined: Nov 19, 2008 |
| Posts: 261 |
|
|
|
|
|
|
|
| Michaelwt wrote: | Not at the minute but I will try and find out.
The mod/admin passwords def are not salted. These are them. I can perhaps use one of the admin passwords (if they can be cracked) to access the ftp, which will contain the php file with the salt.
f10e62daf61b605c127723666ea0ac3c
14c73f3ff897cd3f2d8ffd7194ccdb00
241e495a1272855dc84afb4663e7059e
f3ca272d60f4c96aa19160e511a571a3
36be21503816e369b81a187549bdf15e
Thanks for your time. |
That doesn't sound right... why would everyone but the admin's passwords be salted? Regardless I'll see what I can do. |
|
|
|
|
| Posted: Mon Jan 26, 2009 9:40 pm |
|
|
| r0nny |
| Advanced user |
 |
|
| Joined: Jul 27, 2008 |
| Posts: 76 |
|
|
|
|
|
|
|
| md5 f10e62daf61b605c127723666ea0ac3c cracked baznet |
|
|
|
|
| Posted: Tue Jan 27, 2009 1:45 am |
|
|
| tehhunter |
| Valuable expert |
|
|
| Joined: Nov 19, 2008 |
| Posts: 261 |
|
|
|
|
|
|
|
You're in luck.
[1] collison found: 14c73f3ff897cd3f2d8ffd7194ccdb00 is plaintext pineappledoor94
[2] collison found: 241e495a1272855dc84afb4663e7059e is plaintext Bleach1337182
These just might be the most complex passwords I've ever cracked. |
|
|
|
|
| Posted: Tue Jan 27, 2009 6:13 pm |
|
|
| Michaelwt |
| Regular user |
|
|
| Joined: Jan 26, 2009 |
| Posts: 5 |
|
|
|
|
|
|
|
| Sweet, thanks. You are awesome. |
|
|
|
|
www.waraxe.us Forum Index -> MD5 hashes
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
All times are GMT
Page 1 of 1
|
|
|
|
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|
|
|
