Please note, this is a STATIC archive of website hashcat.net from October 2020, cach3.com does not collect or store any user information, there is no "phishing" involved.

hashcat Forum

Full Version: PBKDF2-HMAC-SHA256
You're currently viewing a stripped down version of our content. View the full version with proper formatting.
I read a nice post about this format: Storing Password in an easy and secure way using Perl

Author wrote, the generated hash:
"The hash will look like this string: {X-PBKDF2}HMACSHA1:AAAD6A:SEvDOw==:1rmVDmR6OgwPEYV5CiwUeYnd+OE="

Can you explain, what the 2nd field (AAAD6A) is for?
Can iteration be determined from this format?

Thank you.
it's written in the document you linked: https://perlmaven.com/storing-passwords-...secure-way -> https://metacpan.org/pod/Crypt::PBKDF2 -> "the number of iterations encoded with MIME::Base64"

Code:
$ echo AAAD6A== | base64 -d | xxd -p
000003e8

0x03e8 (hex) == 1000 (dec)



or just use a perl script:
Code:
perl -MMIME::Base64 -e 'print unpack ("L>", decode_base64 ("AAAD6A")) . "\n"'
1000
Thank you.