11-23-2016, 11:53 PM
Ok, I've been bouncing my head off my desk for several days now on this. First, an assumption I am working off of is that netntlmv1 and MSCHAPv2 are same/same?
What I've tried.
EBE2F20936540E6500000000000000000000000000000000:FBF97203E1B703515A1BF44FF5EA5C621623DAC7065DA58F:1122334455667788
Oh, so I assume it must be ESS. Sooo
Ok, great, but I want to double check this, so...
and then
And... Nothing.
So, I guess I have 3 questions,
1. Am I right in my assumptions that the process for MSCHAPv2 should work for NETNTLMv1?
2. If so, what am I doing wrong in my manual check of the ESS?
3. Once I have the C1,C2, and K3, where do I go from there to get the ntlm?
Thanks!
I've been using the following threads as guidelines.
https://hashcat.net/forum/thread-5948.html
https://hashcat.net/forum/thread-5912.html
What I've tried.
EBE2F20936540E6500000000000000000000000000000000:FBF97203E1B703515A1BF44FF5EA5C621623DAC7065DA58F:1122334455667788
Code:
***@*** ~/D/h/src> chapcrack radius -C 1122334455667788 -R FBF97203E1B703515A1BF44FF5EA5C621623DAC7065DA58F
Cracking K3................
C1 = fbf97203e1b70351
C2 = 5a1bf44ff5ea5c62
C3 = 1623dac7065da58f
P = 1122334455667788
Oh, so I assume it must be ESS. Sooo
Code:
***@*** ~/D/h/src> ./ct3_to_ntlm.bin fd5717880e4b5e13 7ab2b26a22061831 e81d062fe3f8fb9f00000000000000000000000000000000
08a8
Ok, great, but I want to double check this, so...
Code:
***@*** ~/D/h/src> perl -e 'print pack ("H*", "112233445566778803FE97E316101F32")' | md5sum
b66a63d54cfe005c88b054d53f5e3dc0 -
and then
Code:
***@*** ~/D/h/src> hashcat64.bin -m14000 --potfile-disable --quiet -a 3 -1 charsets/DES_full.charset --hex-charset 99223BFDCF216B9B:b66a63d54cfe005c ?1?1000000000000
And... Nothing.
So, I guess I have 3 questions,
1. Am I right in my assumptions that the process for MSCHAPv2 should work for NETNTLMv1?
2. If so, what am I doing wrong in my manual check of the ESS?
3. Once I have the C1,C2, and K3, where do I go from there to get the ntlm?
Thanks!
I've been using the following threads as guidelines.
https://hashcat.net/forum/thread-5948.html
https://hashcat.net/forum/thread-5912.html