.

Password Question

<<

millwalll

Post Wed Jul 20, 2011 2:54 pm

Password Question

Hi All,

Got a quick question about cracking password I have noticed online there are lots online password cracking sites.

Every time I try supply a hash I get error saying its not a Hash I just want to make sure I was passing the correct thing to the site.

for example take this hash
root:$1$3OF/pWTC$lvasdl74pAHAcrvepWqpu.:12859:0::::: what would be the hash ?
<<

lorddicranius

User avatar

Sr. Member
Sr. Member

Posts: 448

Joined: Thu Mar 03, 2011 3:54 am

Post Wed Jul 20, 2011 3:33 pm

Re: Password Question

Jamie.R wrote:Hi All,

Got a quick question about cracking password I have noticed online there are lots online password cracking sites.

Every time I try supply a hash I get error saying its not a Hash I just want to make sure I was passing the correct thing to the site.

for example take this hash
root:$1$3OF/pWTC$lvasdl74pAHAcrvepWqpu.:12859:0::::: what would be the hash ?


The portion between the first and second colons would be the hash.  Be sure to include the period just after the lowercase "u" also (wisdom from a past experience haha).
Last edited by lorddicranius on Wed Jul 20, 2011 3:39 pm, edited 1 time in total.
GSEC, eCPPT, Sec+
<<

Data_Raid

User avatar

Full Member
Full Member

Posts: 165

Joined: Fri Nov 09, 2007 5:55 am

Post Wed Jul 20, 2011 4:15 pm

Re: Password Question

As lordcranius mentioned, the password hash ends at the first colon (the password may or may not include a period but should be included if you're extracting just the hash). In the example you provided, the password hash is
$1$3OF/pWTC$lvasdl74pAHAcrvepWqpu.

Here's a useful link to that explains the format of the shadow file and what each field represents:
http://www.cyberciti.biz/faq/understand ... adow-file/
All men by nature desire knowledge.

Aristotle
<<

SephStorm

User avatar

Hero Member
Hero Member

Posts: 569

Joined: Sat Apr 17, 2010 12:12 pm

Post Wed Jul 20, 2011 4:23 pm

Re: Password Question

fyi, thats an MD5 salted hash, and I have yet to find a site that can crack them.
sectestanalysis.blogspot.com/‎
<<

tturner

User avatar

Sr. Member
Sr. Member

Posts: 435

Joined: Thu Jun 26, 2008 4:50 pm

Post Wed Jul 20, 2011 8:46 pm

Re: Password Question

I hope you guys aren't actually posting hashes for a customer or anything important on a public web forum ;)
Certifications:
CISSP, CISA, GPEN, GWAPT, GAWN, GCIA, GCIH, GSEC, GSSP-JAVA, OPSE, CSWAE, CSTP, VCP

WIP: Vendor WAF stuff

http://sentinel24.com/blog @tonylturner http://bsidesorlando.org
<<

millwalll

Post Thu Jul 21, 2011 12:36 pm

Re: Password Question

lol no tturner it was something I made up was just curious.

Return to Tools

Who is online

Users browsing this forum: No registered users and 0 guests

.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software