|
Search Results
|
| Post |
Author |
Forum
[desc]
|
Replies |
Views |
Posted |
| |
|
Thread: oclHashcat-plus: resume after shutdown
Post: RE: oclHashcat-plus: resume after shutdown
| Would the resume be easier if it were a "close enough" resume?
Personally, I wouldn't be at all bothered by the resume re-cracking several minutes or even a couple of hours worth of work that it ha... |
|
Incisive |
Feature Requests
|
7 |
24,177 |
11-03-2011, 04:26 PM |
| |
|
Thread: Hashcat-gui request for --stdout
Post: Hashcat-gui request for --stdout
| First, thank you for the GUI - it's wonderful, and serves as a great demonstration tool as well.
For those hashcat tools that support it, could we have a GUI --stdout option for using *hashcat* as ... |
|
Incisive |
Feature Requests
|
0 |
4,213 |
12-06-2011, 06:58 PM |
| |
|
Thread: Support recovery of passwords of length 16 and above
Post: RE: Support recovery of passwords of length 16 and...
| Thank you for looking into this, Atom. The speed drop is pretty significant, but the larger host memory requirement is just a budget issue for those that need to do that level of auditing.
Would i... |
|
Incisive |
Feature Requests
|
22 |
50,733 |
05-21-2012, 06:25 PM |
| |
|
Thread: Support recovery of passwords of length 16 and above
Post: RE: Support recovery of passwords of length 16 and...
|
Hash-IT Wrote: (06-07-2012, 02:47 PM)
--
Your ideas about reducing download size are good, but it would mean atom having to make many builds.
--
Agreed; that's why I suggested automated build scrip... |
|
Incisive |
Feature Requests
|
22 |
50,733 |
06-08-2012, 04:33 AM |
| |
|
Thread: AES/Rijndael expert needed
Post: RE: AES/Rijndael expert needed
|
gat3way Wrote: (06-04-2012, 03:06 PM)
--
Much better idea would be to use a key derivation function like PBKDF2 with ïnitial symmetric key as salt with some good iterations count. Applying the pas... |
|
Incisive |
Feature Requests
|
5 |
14,067 |
06-07-2012, 07:10 AM |
| |
|
Thread: Support recovery of passwords of length 16 and above
Post: RE: Support recovery of passwords of length 16 and...
|
atom Wrote: (05-21-2012, 06:35 PM)
--
In theory yes, but then we would require special Kernels for each Hash-lenght (in steps of 4). If you take a look at the kernels directory, it would cause the pr... |
|
Incisive |
Feature Requests
|
22 |
50,733 |
06-07-2012, 07:17 AM |
| |
|
Thread: SQL 2012 password hash
Post: SQL 2012 password hash
| Please include the SQL 2012 password hash; it's identical to 2005, except
0x0200 as an ID instead of 0x0100
SHA-512 instead of SHA1
i.e. a sanitized test version run on SQL Server itself shows th... |
|
Incisive |
Feature Requests
|
11 |
42,551 |
08-17-2012, 11:45 PM |
| |
|
Thread: SQL 2012 password hash
Post: RE: SQL 2012 password hash
| Here's SQL2012 results for the hashcat example file A0.M1300.word:
SELECT example, pwdencrypt(example)
FROM
(SELECT 'carlos' AS example
UNION ALL SELECT 'test'
UNION ALL SELECT 'test1'
UNION ALL... |
|
Incisive |
Feature Requests
|
11 |
42,551 |
08-20-2012, 05:05 PM |
| |
|
Thread: SQL 2012 password hash
Post: RE: SQL 2012 password hash
|
radix Wrote: (08-21-2012, 11:22 AM)
--
I've added this even though SQL documentation advises against using pwencrypt to hash passwords (bad admins will bad admin). Should be available in the next re... |
|
Incisive |
Feature Requests
|
11 |
42,551 |
08-21-2012, 11:46 PM |
| |
|
Thread: PBKDF2/RFC2898/PKCS#5 modes?
Post: PBKDF2/RFC2898/PKCS#5 modes?
| As a less immediate, longer term project, I'd like to request generic PBKDF2 (also known as RFC2898 and PKCS#5) support, in whichever applications can reasonably support it. For hash algorithms, I'd ... |
|
Incisive |
Feature Requests
|
3 |
12,255 |
08-22-2012, 06:28 PM |
| |
|
Thread: PBKDF2/RFC2898/PKCS#5 modes?
Post: RE: PBKDF2/RFC2898/PKCS#5 modes?
| Aside from some applications following the OWASP Password Storage Cheat Sheet:
Django web framework
https://code.djangoproject.com/ticket/15367
https://www.levigross.com/post/18880148948/a-review-of... |
|
Incisive |
Feature Requests
|
3 |
12,255 |
08-27-2012, 10:45 PM |
| |
|
Thread: SIP (MD5)
Post: RE: SIP (MD5)
| It looks like SIP has at least two places that use MD5 digest:
One of which is in the password storage on disk on the SIP server - that's the MD5(username:domain:password).
The other place is duri... |
|
Incisive |
Feature Requests
|
5 |
31,775 |
08-31-2012, 09:13 PM |
| |
|
Thread: Support for new ASP.NET password storage practices
Post: RE: Support for new ASP.NET password storage pract...
| To be fair, PBKDF2(HMAC-SHA1, pw, salt, 1000, 256) is absolutely much better than the previous SHA1(pw, salt). Completely insufficent and quite silly, but still better than we had. PBKDF2(HMAC-SHA-3... |
|
Incisive |
Feature Requests
|
6 |
30,189 |
12-12-2012, 09:30 PM |
| |
|
Thread: 7970 reaches 90 celsius
Post: RE: 7970 reaches 90 celsius
| +1 on better cooling for both the card and the case - cold air in, over the heat sinks, hot air out. Arctic has a great reputation, and it's really not that difficult to swap out the cooler. Also, t... |
|
Incisive |
General Help
|
4 |
12,900 |
03-24-2013, 01:19 AM |
| |
|
Thread: How should I store my users passwords in my DB?
Post: RE: How should I store my users passwords in my DB...
| 1) Don't enforce a short maximum length - you're storing a hash, so if they want to use an epic passpoem, let them. The lower the number of scrypt or PBKDF2 iterations, the longer the minimum length ... |
|
Incisive |
General Help
|
4 |
10,281 |
07-19-2012, 08:57 PM |
| |
|
Thread: Is it a md5 colision ?
Post: RE: Is it a md5 colision ?
| Set --outfile-format=7 (or whatever the hashcat CLI version of that argument is) and see if the hex versions of the passwords are identical; perhaps there's a nonprintable character in one or the othe... |
|
Incisive |
General Help
|
15 |
33,297 |
04-14-2013, 05:37 AM |
| |
|
Thread: Is it a md5 colision ?
Post: RE: Is it a md5 colision ?
| Awesome job, philsmd!!!
Mem5, I would suggest you put in a Trac ticket with the outfile-format=7 results and philsmd's test cases, since outfile-format=7 should have shown something like the correct:... |
|
Incisive |
General Help
|
15 |
33,297 |
04-15-2013, 06:12 AM |
| |
|
Thread: Is it a md5 colision ?
Post: RE: Is it a md5 colision ?
|
Mem5 Wrote: (04-19-2013, 07:51 AM)
--
Ok, I'll open a TRAC. Thank you for your help.
Curious question : how can somebody login into a system using a password with the null byte character ? As it i... |
|
Incisive |
General Help
|
15 |
33,297 |
04-19-2013, 12:02 PM |
| |
|
Thread: All Chars = Big Chaos
Post: RE: All Chars = Big Chaos
| You can use
Code:
--
--outfile=Myfile.out --outfile-format=5
--
instead; then at least hash and password will be in hex, except the :'s of your separator character. I don't know if the salt's... |
|
Incisive |
General Talk
|
8 |
14,731 |
05-03-2013, 04:26 PM |
| |
|
Thread: [Release] Unified List Manager (ULM)
Post: RE: [Release] Unified List Manager (ULM)
| First, thank you for being willing to provide the community with another set of tools - in particular, in a cross-platform tool with a nice GUI!
I'd like to suggest that once you're happy with the ... |
|
Incisive |
General Talk
|
10 |
25,565 |
10-10-2013, 05:28 AM |
