Dont know where people are upto on the rainbow table project but im looking at taking a different approach. Im currently building my 4th rainbow table (each 128MB), im only building lanmanager alphabetic tables (taken 2 days so far) but was just wandering if any1 wud want to do any swaps if they have been building different tables i.e] send via snail mail. Will be getting a few more machines together so will hopefully be building them alot quicker. Im only prepared to trade with people in the UK. If anyone is interested PM me.
fenriz_
Dec 10 2004, 12:27 AM
For what it's worth I created a torrent for lm-alpha-numeric-symbol14-space the url is here
I am however interested in getting together with some folks for creating tables for some other algorithms. I greatly prefer allowing the final product to be available for anyone as this helps the greater good of the community IMHO.
I have access to quite a few systems (depending on their general use, they're for MS patch testing) when they are not being used for that I have unrestricted access. The above tables took me about 2 weeks to generate.
I just ask that anyone who downloads the torrent to leave it open for a while once you're finished, it helps everyone...
int23h
Dec 10 2004, 10:01 AM
I have lm_alpha-numeric-symbol14 length 1-7, about 30gb. if anyone wants to trade md5 tables tell me
kbnet
Dec 10 2004, 11:51 AM
@ fenriz_ - Cheers for the torrent, its dloading. I will make sure it stays seeded.
@int23h - i would offer to do a swap with you but my tables are as no way as good as yours. How long did it take you to build the 30GB lm-alpha-num?
Also a question for both of you. How successful have you been at cracking the hashes with your tables?
Cheers
fenriz_
Dec 10 2004, 12:24 PM
QUOTE(kbnet @ Dec 10 2004, 06:51 AM)
@ fenriz_ - Cheers for the torrent, its dloading. I will make sure it stays seeded.
@int23h - i would offer to do a swap with you but my tables are as no way as good as yours. How long did it take you to build the 30GB lm-alpha-num?
Also a question for both of you. How successful have you been at cracking the hashes with your tables?
Cheers
I have, so far, been able to crack every lm password I have attempted with these tables. I usually do a couple penetration tests at work per month and I've found that showing the manager their admin password has been extremely effective.
whiskah
Dec 10 2004, 11:55 PM
if u are doing lm tables then u can dload some here
im no big rainbow table generator, mainly becuase me and maths sucked, so i could never generate the correct efficient table ... anywayz, im very pro sharing files. Ive generated md5 tables for phpnuke / phpbb exploits ... work fine anywayz, if these details mean anything to you, msg me and we'll work something out
anywayz, ive offered them before, but i dont really have much access to a decent tracker, and emule etc and a pain ... if you have the resources msg me, their useful for people who dont know how to pick a password...
Also, msg me @ irc.governmentsecurity.org ...
Masterace
Dec 15 2004, 03:30 AM
@whiskah thank u for this link.it has been posted some while ago here @ gso but i didnīt find it anymore.The link should be real usefull.
fenriz_
Dec 15 2004, 04:21 AM
To all those pulling my tables via torrent...
Thanks for putting up with me. I've been upgrading my kernel over the last couple of days and had a difficult time with the drivers from ATI. Anyway, everything is up now, but I've had to restart X (and azureus) a few time so I have no idea how far anyone has gottten. The full package is 10.55 GB and I've uploaded almost 15GB so someone may be close to done.
Some people don't like that I did this as a torrent but I wanted to get these files out without having to host them forever and I figure that a torrent is the best way to do that. This is the reason for me refusing to ftp the files up.
In the end i figure this is still acceptable to most people and is faster than generating them yourself on one or two systems. Unzipping them will take a while though...
If anyone has some I am still looking for NTLM and MD5. I suppose I could probably generate these too if needed or be part of a group for this.
cyberdog
Dec 15 2004, 09:23 AM
Thanks man.. I dont see any other alternative than torrent here, especially if you're on a home DSL connection. I see alot of people on other boards whining about FTP but theres no denying torrent is a better way of transferring large files.
I just started generating alpha-numeric lm tables 1-7 on a p3 500, just to try it out. I also have a athlon 900 and a p2 450 and was thinking of generating larger tables, is there a easy way to do this distributed over several boxes? My CLI isn't very good so if anyone got a bash script of some sort i'd apreciate it.
myth
Dec 16 2004, 02:13 AM
My MD5's are getting rarred and torrented in the next couple hours, within 24hrs, myself and fenriz_ will upload the md5 torrent.
Will msg back soon
fenriz_
Dec 16 2004, 03:30 AM
QUOTE(cyberdog @ Dec 15 2004, 04:23 AM)
Thanks man.. I dont see any other alternative than torrent here, especially if you're on a home DSL connection. I see alot of people on other boards whining about FTP but theres no denying torrent is a better way of transferring large files.
I just started generating alpha-numeric lm tables 1-7 on a p3 500, just to try it out. I also have a athlon 900 and a p2 450 and was thinking of generating larger tables, is there a easy way to do this distributed over several boxes? My CLI isn't very good so if anyone got a bash script of some sort i'd apreciate it.
I generally load the rainbow tarball on whatever platform I'm using (mostly linux but the free machines I have access to are 6-8 p4 3GHz running win2k) setup the charset.txt and generate them in parallel.
kbnet
Dec 16 2004, 05:23 PM
@fenriz - ive dloaded 56% of your rainbow tables. Uploaded around 5GB, going to leave it seeded for ages once im finished dloading.
@Myth1368 - make sure you let us know once you release the MD5 tables. Look 4ward to dloading them and seeding them.
Cheers
int23h
Dec 16 2004, 06:03 PM
myth, it would be great if you could set up a torrent, but when I calculate your configuration I see that the first four files would be enough to reach the 99 percent success probability.
fenriz_
Dec 16 2004, 07:45 PM
QUOTE(kbnet @ Dec 16 2004, 12:23 PM)
@fenriz - ive dloaded 56% of your rainbow tables. Uploaded around 5GB, going to leave it seeded for ages once im finished dloading.
@Myth1368 - make sure you let us know once you release the MD5 tables. Look 4ward to dloading them and seeding them.
Cheers
Thanks, I have about six people pulling from me. My upload bandwidth is capped at about 350 kbs and from what I've seen the bandwidth is pretty evenly split between all those. So if anyone thinks they're d/l is slow that's why.
UFcen2000
Dec 16 2004, 09:35 PM
I have a complete set of lm_alpha_numeric (6 x 640 Mb) and a full set of lm_alpha_numeric_symbol14( 24 * 1.024 Gb) that I've generated.
I have a pretty fast comp... only about 6 days to generate the smaller set, but access to a much larger processing environment. Only two weeks to create the larger table. I'd be interested in helping people generate a set of lm tables for all characters. Storage is your problem
I was thinking of something like this:
rtgen lm all 1 7 X 5700 67108864 _0 rtgen lm all 1 7 X 5700 67108864 _1 rtgen lm all 1 7 X 5700 67108864 _2 rtgen lm all 1 7 X 5700 67108864 _3
Where X was from 0 - 24. If my math is still good you would end up with a set of lm tables with a keyspace of 67, each table 1.02 GB each and a total size of 98.3Gb (or 25 DVDs) with a %99.639 success rate. That will crack any lm password.. period.
However... has anyone ever run across NTLMv2 passwords yet?
myth
Dec 18 2004, 02:17 AM
QUOTE(int23h @ Dec 16 2004, 06:03 PM)
myth, it would be great if you could set up a torrent, but when I calculate your configuration I see that the first four files would be enough to reach the 99 percent success probability.
yeah, im pretty bad at maths, and never could re-read the bloody thesis on rtgen compiling. So i just had a list of plaintext/md5 hashs's of 20 pwds, and stopped generating the tables when i could crack them all....
So their highly inefficient, but they work
change from .txt to .torrent
may not work for a couple hrs, maybe a day or two, got alot of work to do before then
sorry, but you'll get'em
myth
Dec 20 2004, 04:50 PM
OK,
torrent is up and running w/o me knowing, I uploaded the wrong torrent cause i figured i'd just add the files to the torrent instead of the rar file so different people could download different files and get more seeders quicker
but im happy to leave it running at the speed it is (capped at 7kb/s) and the file structure. But if enough people ask, i can easily remove the torrent and put up a better one
anywayz, for those who are downloading from me and think they know a better method please msg us.
Also, if someone is willing to, im happy to open up my ftp and allow one person to download the whole lot uncapped (well, 512/128 so will be capped at about 10 kb/s) but that way i can get seeders out quicker
msg back with what ya think
FlashBack
Jan 3 2005, 10:25 PM
props to the seeders.
myth
Jan 4 2005, 03:16 AM
Well, i was seeding, then things just started (filtered) up....
I was gonna try again if anyone complained, but the only other option is getting someones address with a decent net connection, and sending them the cd's....
So if anyone does want them... I can send
fenriz_
Jan 5 2005, 01:56 AM
I am still seeding both torrents.
phaeton
Jan 5 2005, 03:47 PM
Why not someone just setup a 120gB webserver with all the hashes and run the public service for people, if you set it up properly you can get close to runs every 2 minutes on a p4 2.4... I'd do it but I have no hdd space for this kind of thing.
DasmER
Jan 5 2005, 07:26 PM
QUOTE(phaeton @ Jan 5 2005, 03:47 PM)
Why not someone just setup a 120gB webserver with all the hashes and run the public service for people, if you set it up properly you can get close to runs every 2 minutes on a p4 2.4... I'd do it but I have no hdd space for this kind of thing.
I thought this the other day..If GSO could set up this hard disk (and we all pay money for the purchase of the hdd) and assign each user a set number of hashes to generate, and then upload it, wouldn't be of great help to all? do it like a project or something..Just a suggestion..
fenriz_
Jan 6 2005, 04:06 AM
QUOTE(phaeton @ Jan 5 2005, 10:47 AM)
Why not someone just setup a 120gB webserver with all the hashes and run the public service for people, if you set it up properly you can get close to runs every 2 minutes on a p4 2.4... I'd do it but I have no hdd space for this kind of thing.
I don't want to speak for Myth1368, but I do not want to dedicate a server (my experience is that rcrack is not too forgiving on RAM or CPU cycles) for this purpose.
IMHO, I just feel this comes down to the fact that someone will complain about something even if you give it away. Depending on the systems you own you could generate the tables I'm sharing in 1-6 weeks, or buy them for $120 online. It will take a while to d/l them from me (and anyone else seeding) but that's the price you pay.
Theres always Sarca's site. Their charset is only slightly worse than mine (on the lm side).
Personally I just don't trust a remote site for this. Between access logs, email addresses, hashes, etc...
Basically I'm of the opinion that if I want a hash cracked, I'll be the one doing the cracking using apps I know and trust.
accessx
Jan 11 2005, 10:57 PM
Heard of any distributed projects for table generation? Thinking about beefing up my system to a dual xeon/UPS and share the load with two other P4 2.4.. Mostly interested in MD5 hashes...
My current table set generation will be done in another month or so..I want 1-15 at least mixed alpha-numeric-all-space!!!
fulvioo
Jan 12 2005, 12:45 AM
lol
md5 1-15 mix-alpha-numeric-space
That will blow the maximum rainbow table limit
myth
Jan 12 2005, 01:21 AM
yeah, ffs, thats huge...
Im about to get generating some md5 1-9 loweralphanumericsymbol14
just need to do a format and i'll get on it, depending if i can find some already seeded files
accessx
Jan 12 2005, 10:05 PM
QUOTE(fulvioo @ Jan 12 2005, 12:45 AM)
lol
md5 1-15 mix-alpha-numeric-space
That will blow the maximum rainbow table limit
damn 18446744073709551615 key space limit!!
Nico3k
Jan 13 2005, 03:34 AM
If anyone wants me to host rainbow table, please let me know. Have 655mbit servers waiting. Just send me a message.
FuzZyBeeR
Jan 13 2005, 07:41 AM
QUOTE(Nico3k @ Jan 13 2005, 03:34 AM)
If anyone wants me to host rainbow table, please let me know. Have 655mbit servers waiting. Just send me a message.
Yes please i was generating myself, but it really takes ages .. and with fast connection it won't take ages .. only to upload
fenriz_
Jan 14 2005, 02:46 AM
QUOTE(FuzZyBeeR @ Jan 13 2005, 02:41 AM)
QUOTE(Nico3k @ Jan 13 2005, 03:34 AM)
If anyone wants me to host rainbow table, please let me know. Have 655mbit servers waiting. Just send me a message.
Yes please i was generating myself, but it really takes ages .. and with fast connection it won't take ages .. only to upload
I'd be interested in this as well. I don't have an especially, in comparison anyway, fast pipe. But I have several servers at my disposal to generate tables.
Presnus
Jan 14 2005, 10:14 AM
maybe a stupid question but if I wanna crack my WINNT password , I need to generate a table but wich hash sort is it (ML,MD5,MD4,MD2,....) ? I use the program Winrtgen rainbow tables generator !
Thx
FuzZyBeeR
Jan 14 2005, 10:28 AM
QUOTE(Presnus @ Jan 14 2005, 10:14 AM)
maybe a stupid question but if I wanna crack my WINNT password , I need to generate a table but wich hash sort is it (ML,MD5,MD4,MD2,....) ? I use the program Winrtgen rainbow tables generator !
Thx
You need LM i guess
Presnus
Jan 14 2005, 12:08 PM
QUOTE(FuzZyBeeR @ Jan 14 2005, 10:28 AM)
QUOTE(Presnus @ Jan 14 2005, 10:14 AM)
maybe a stupid question but if I wanna crack my WINNT password , I need to generate a table but wich hash sort is it (ML,MD5,MD4,MD2,....) ? I use the program Winrtgen rainbow tables generator !
Thx
You need LM i guess
I need to be sure because generating a table costs a lot of time !
FuzZyBeeR
Jan 14 2005, 01:37 PM
QUOTE(Presnus @ Jan 14 2005, 12:08 PM)
QUOTE(FuzZyBeeR @ Jan 14 2005, 10:28 AM)
QUOTE(Presnus @ Jan 14 2005, 10:14 AM)
maybe a stupid question but if I wanna crack my WINNT password , I need to generate a table but wich hash sort is it (ML,MD5,MD4,MD2,....) ? I use the program Winrtgen rainbow tables generator !
Thx
You need LM i guess
I need to be sure because generating a table costs a lot of time !
yeh you need LM tables
QUOTE
from #rainbowcrack [14:36] <FuzZyBeeR> WINNT passwords use a lm table right? [14:37] <legion> yeah
saetji
Jan 20 2005, 06:57 PM
Well thanx to all the ppl hosting rainbow tables - gr8 community service you're doing
Spiffypat
Jan 20 2005, 10:25 PM
dling the torren right now and seeding at 10kb/s This is a neat little project. I attmepted to make some sha1 rt but for some reason when I try my sha1 hash, I get "file length mismatch" If some one would just tell me what to type into cmd prompt, I could generate tables on about 10 different computers, and upload to my site. Anyone even try the sha1 tables yet?
*edit* Is there a program that generates hashes from a user input? For md5, sha1, or lm. I think it would be nice to see if its getting the correct password.
kbnet
Jan 21 2005, 04:07 PM
QUOTE(Spiffypat @ Jan 20 2005, 05:25 PM)
*edit* Is there a program that generates hashes from a user input? For md5, sha1, or lm. I think it would be nice to see if its getting the correct password.
Use a hash calculator. Theres one in Cain and Abel. You just type in the word and it generates the hash for all the different types, lm,ntlm, sha1, md4, md5 etc... its really useful.
kbnet
Jan 21 2005, 04:10 PM
Is it possible to generate rainbow tables by using a cluster? If not what is the best way to generate rainbow tables over several machines?
Cheers
myth
Jan 22 2005, 01:25 AM
kbnet
pretty much a linux cluster.
Windows clustering isnt even remotly true clustering, and the software needs to support it... Ie, pretty much Exchange is decent on a cluster, and MSSQL etc etc
What is openMosix? openMosix is a Linux kernel extension for single-system image clustering. This kernel extension turns a network of ordinary computers into a supercomputer for Linux applications.
Once you have installed openMosix, the nodes in the cluster start talking to one another and the cluster adapts itself to the workload. Processes originating from any one node, if that node is too busy compared to others, can migrate to any other node. openMosix continuously attempts to optimize the resource allocation.
We achieve this with a kernel patch for Linux, creating a reliable, fast and cost-efficient SSI clustering platform that is linearly scalable and adaptive. With openMosix' Auto Discovery, a new node can be added while the cluster is running and the cluster will automatically begin to use the new resources.
There is no need to program applications specifically for openMosix. Since all openMosix extensions are inside the kernel, every Linux application automatically and transparently benefits from the distributed computing concept of openMosix. The cluster behaves much as does a Symmetric Multi-Processor, but this solution scales to well over a thousand nodes which can themselves be SMPs.
The openMosix Community is very active, contributing add-on applications and sharing helpful information with all users. The openMosix Add-Ons and Community page lists these shared applications. And, it is all GPL'd.
Actually, i should relook at doing this again... Maybe gettin my xbox to to generate some tables .... actually ...
fenriz_
Jan 22 2005, 03:02 AM
QUOTE(Myth1368 @ Jan 21 2005, 08:25 PM)
kbnet
pretty much a linux cluster.
Windows clustering isnt even remotly true clustering, and the software needs to support it... Ie, pretty much Exchange is decent on a cluster, and MSSQL etc etc
What is openMosix? openMosix is a Linux kernel extension for single-system image clustering. This kernel extension turns a network of ordinary computers into a supercomputer for Linux applications.
Once you have installed openMosix, the nodes in the cluster start talking to one another and the cluster adapts itself to the workload. Processes originating from any one node, if that node is too busy compared to others, can migrate to any other node. openMosix continuously attempts to optimize the resource allocation.
We achieve this with a kernel patch for Linux, creating a reliable, fast and cost-efficient SSI clustering platform that is linearly scalable and adaptive. With openMosix' Auto Discovery, a new node can be added while the cluster is running and the cluster will automatically begin to use the new resources.
There is no need to program applications specifically for openMosix. Since all openMosix extensions are inside the kernel, every Linux application automatically and transparently benefits from the distributed computing concept of openMosix. The cluster behaves much as does a Symmetric Multi-Processor, but this solution scales to well over a thousand nodes which can themselves be SMPs.
The openMosix Community is very active, contributing add-on applications and sharing helpful information with all users. The openMosix Add-Ons and Community page lists these shared applications. And, it is all GPL'd.
Actually, i should relook at doing this again... Maybe gettin my xbox to to generate some tables .... actually ...
If I remember correctly doesn't the openMosix head take child processes from the app and distribute them to the nodes and that's how it gets around not having the app written for it?
kbnet
Jan 22 2005, 09:18 AM
Cheers for your replies guys. Going to try and clear it with my University to see if they will let me generate 64GB's worth of rainbow tables. If I set up a huge cluster hopefully I will get it done within my lifetime! Dont suppose there is an equivalent of WinRTGen for Linux? I know i can use the console rainbow gen from project Rainbow crack for Linux but I dont remember the console version giving benchmark results like WinRTGen does.
If anyone is in Sheffield and feels like helping on this project then please PM me. I will try and get it cleared with Uni asap.
Cheers
Chunks
Jan 22 2005, 02:11 PM
Myth1368 - I get an error while trying to connect to the tracker for your torrent.
Big thanks for putting it up and all the effort, do we have another tracker for this baby?
fenriz_
Jan 23 2005, 02:28 AM
Myth1368 is using the same tracker I am. If this is proving to be unreliable we could consider making a new torrent with a different tracker...
I'll admit I'm not familiar with WinRTGen. My recommendation is to use rtgen that comes with the project. I believe there is some sort of test function (but maybe I'm confusing this with John...)...
myth
Jan 23 2005, 04:26 AM
yeah ive been having alot of troubles with the trackers recently...
tryin to organise uploadin via another server...
fenriz_ if you could, pm your addy and ill send them up via dvd's then we can use another tracker
pr0t0type
Jan 24 2005, 02:52 PM
Downloading your torrent fenriz, good seed once im done too
Anyone know if you can do ntlmv2 tables? a st of them would be very handy
fenriz_
Jan 27 2005, 02:16 AM
QUOTE(Myth1368 @ Jan 22 2005, 11:26 PM)
yeah ive been having alot of troubles with the trackers recently...
tryin to organise uploadin via another server...
fenriz_ if you could, pm your addy and ill send them up via dvd's then we can use another tracker
I don't currently have the tracker in azureus (sp?) enabled, or port 6969 open on my firewall. I'm still using the same tracker as you, wierd that your torrent is not working. I'm out of town this week but will look into it when I get back.
Anyone know the keyspace for ntlmv2? This would be best as a distributed project to be able to get this done in any reasonable amount of time.
Anyone have access to a decent cluster? I think only openmosix could properly distribute this unless something was specifically written for the cluster.
fenriz_
Jan 27 2005, 02:34 AM
Kinda off group question but it fits the thread.
What would need to be done to hook a web front end (pref php) onto rcrack?
I am not a php or web developer but am getting more interested in setting this up.
kbnet
Jan 27 2005, 08:38 AM
QUOTE(fenriz_ @ Jan 26 2005, 09:34 PM)
Kinda off group question but it fits the thread.
What would need to be done to hook a web front end (pref php) onto rcrack?
I am not a php or web developer but am getting more interested in setting this up.
The webpage would pretty much consist of a textbox (for user to enter hash) and submit button. Once user submits the hash you would save this to file then execute "rcrack.exe" with the necessary parameters but redirect the output. e.g "rcrack c:\rainbowcrack\*.rt -f pwfile.txt > cracked.dat"
Not sure on the best way to display this data back to the user. If i was developing it I would have a javascript timeout. For example if i knew it was going to take 1 minute for rcrack to finish I would have a javascript timer counting down (make it 1minute 30 to play safe) and once the time is up just redirect the user to the page where "cracked.dat" will be displayed. You would also need a check on the webpage to make only one hash could be submitted at one time.
I only develop in ASP .NET so cant give you the PHP code but the concept will be the same. Hope that helps.
I have a meeting with my University next week to discuss the generation of the 64GB rainbow table. Im just wondering the best way to generate these tables. If i get a load of machines would it be best building a table on each or trying to put together a cluster?
myth
Jan 28 2005, 01:58 AM
QUOTE(fenriz_ @ Jan 27 2005, 02:34 AM)
Kinda off group question but it fits the thread.
What would need to be done to hook a web front end (pref php) onto rcrack?
I am not a php or web developer but am getting more interested in setting this up.
Sorry cant be much help, but ive got a couple mates that do wierd stuff in php. Will get them to have a look, im happy to run a small server
QUOTE(kbnet @ Jan 27 2005, 08:38 AM)
I have a meeting with my University next week to discuss the generation of the 64GB rainbow table. Im just wondering the best way to generate these tables. If i get a load of machines would it be best building a table on each or trying to put together a cluster?
Expect to compute each table on each computer, but then look @ about 25% of the computers and attempt to get them all clusterd up (openmosix, but as far as i know thats mainly for cracking the hash's not generating tables for them). But have a look at rtgen and its equivilants, if you can run multiple instances, thats all you need...
Give us a post if you find somehting different or whatnot, curious on clustered rtgen not cracking on a cluster
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.
i was generating myself, but it really takes ages 