HomeCalendarCertificationsColumnsFeaturesForumResourcesVitals
 
Image
 
linkedin_logo.png rss_logo.jpg
twitter_logo.png youtube_logo.jpg
Latest Additions
 
EH-Net Login
Welcome Guest.
Lost Password?
No account yet? Register
Who's Online
We have 47 guests and 2 members online
 
Advertisement

You are here: Home arrow Resourcesarrow Tutorialsarrow MD5 with salt encryption
EH-Net
May 18, 2013, 02:32:33 PM *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: Go back to The Ethical Hacker Network Online Magazine Home Page
 
   Home   Help Calendar Login Register  
Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: MD5 with salt encryption  (Read 8711 times)
0 Members and 1 Guest are viewing this topic.
xorf
Newbie
*
Offline Offline

Posts: 4


View Profile
« on: October 13, 2007, 05:22:05 AM »
I currently run a VBulletin community forum.

I only started to use cain, but it will not decrypt any of the MD5 hashes, even a very simple 5 dictionary character that i purposely added as a test.

is it because vbulletin uses salt along with the MD5?
Logged
Manu Zacharia (-M-)
Sr. Member
****
Offline Offline

Posts: 393


c0c0n Hacking Conference - where hackers unite


View Profile WWW
« Reply #1 on: October 13, 2007, 08:25:32 AM »
Hi Xorf,

I think that is the reason why you are unable to decrypt any of the MD5 hashes. vBulletin passwords are stored in the following format:

Code:
$password_hash = md5(md5($password_text) . $user_salt);

Note - $user_salt is a random three character string stored in the user table as 'salt'.

 
Logged
Manu Zacharia
MVP (Enterprise Security), ISLA-2010 (ISC)², C|EH, C|HFI, CCNA, MCP,
Certified ISO 27001:2005 Lead Auditor

There are 3 roads to spoil; women, gambling & hacking. The most pleasant with women, the quickest with gambling, but the surest is hacking - c0c0n
xorf
Newbie
*
Offline Offline

Posts: 4


View Profile
« Reply #2 on: October 13, 2007, 08:39:48 AM »
Hey Morpheus,

Ya i noticed the string within the table. a combination of a-z A-Z 0-9 and a symbol

is there a way to decrypt the MD5 hash even if it is further encrypted with slat?
Logged
Craig
EH-Net Columnist
Jr. Member
*****
Offline Offline

Posts: 69


View Profile WWW
« Reply #3 on: October 13, 2007, 07:17:51 PM »
Yahoo mail used to use the exact same method to hash their passwords. Google for a program called Ycrack (dictionary attack tool), it should work for your situation - just substitute your $user_salt string for the challenge string that Yahoo used.

P.S. - If you want to speed up Ycrack, delete the line
Code:
printf("Trying:%s\n",string);
before compiling it.
Logged
http://www.sourcesec.com
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.18 | SMF © 2013, Simple Machines
Joomla Bridge by JoomlaHacks.com 		Valid XHTML 1.0! Valid CSS!
Page created in 0.061 seconds with 22 queries.
 
Exclusive Deal

sansfire13_245x90_cw90.jpg
SANSFIRE 2013
June 15 - 22

5% Off w/ Code: EHN_5

SANS Deals 4 EH-Netters
5% OFF Any SANS Course in Any Format!
Coupon Code: EHN_5 Including SANS Rocky Mountain 2013 & SANS Boston 2013
Polls
Compared to this year, 2013 will be:
 
Recent Forum Topics
EH-Net News Feeds
Latest Additions
 
         
Advertisement

© 2013 The Ethical Hacker Network
Joomla! is Free Software released under the GNU/GPL License.