hashcat Forum

Greetings All,

I am a total hashcat newbie As I am running Redmine on my server and I wanted to perform a security audit to see if I could crack some passwords of my users. I realized that hashcat 0.47 supports redmine hashes.

I just do not know what the right syntax to use? and how should i put redmine's passwords and salts? would it be like passalt ?

Any tips would be highly appreciated.
Thanks

Thank you, i have checked the wiki and viewed its exampls.

I ran

and i got:

Would you advice?

I don't know which hashtype you want to crack, but i can say you, that -m 7600 doesn't exists.
Look here and search for your hashtype : https://hashcat.net/wiki/doku.php?id=example_hashes

(02-05-2014, 04:42 PM)TrAnn3l Wrote: [ -> ]I don't know which hashtype you want to crack, but i can say you, that -m 7600 doesn't exists.
Look here and search for your hashtype : https://hashcat.net/wiki/doku.php?id=example_hashes

look again

I can confirm that there was a slight problem w/ the hash type number of redmine hashes...
Next version will work w/ -m 7600 but it doesn't work w/ current release version because of that slight hash type numbering problem.

I added a sample hash to the wiki: https://hashcat.net/wiki/doku.php?id=example_hashes
The algo is btw: sha1 ($salt . sha1 ($pass))

Next release will include the fix.

Thx for reporting @boxed

Thank you all for the tips and hints. And will be waiting for the new release.