Hi all

Made a new thread..cuz the previous one..had
too much of irrelevant information...

Now about the serv-u passwords and its bruteforcing..
Maybe one of the less used thing to do is to bruteforce the allready passwords
*found in a machine..Most common solution is *delete the old *.ini file..and setup a new one..I am mostly interested in bruteforcing the hashes..rather then editing/deleting/adding accounts to the existing ones..

As previously suggested I got SUPassConvert executable..
and after the conversion..I got something like this...

Initial password from servu ini file:
[USER=creep]
Password=xa76754AE5201122837B3D3F74E245C97F

Converted from SUPassConvert executable..:
creep:xa76754AE5201122837B3D3F74E245C97F:7:7:testing:/test:/bin/bash

A unix password line would normally be something like this..
creep:x:1000:10:Creep,,,:/home/creep:/bin/bash

So my question is ..whether this seems ok
a) Has anyone successfuly brute forced these converted passwords..
b) If someone has..and they got a result ,was it a working one ? did the password match ?

Thats my query..
All ideas ,opinions,flames are welcome :)

I have successfully used MDcrack, but it only really works well on shot passwords <5 char and the CPU useage is stupid on it.

It runs in CMD, and with your password of:

hmm, i tried mdcrack a few days ago
but ehm, how can i resume the brute forcing...?
i stopped when it was with:
Jtvm <- string
2d3f556ff420351cds674db42a841395 <- hash

is there any programs that are gui based? cause i like colors lol

mdcrack uses 99% cpu because they dont give time for the cpu to rest sleep(1); would of been sufficent.. anyway
for a gui you can make your own its not to hard just pipe the data from mdcrack.exe to your gui program.. and you can resume mdcrack -? shud help you out

the switch -V (upper case) as shown in the code uses far less CPU time at around 30%

Thanks for your time
Will try mdcrack:)

Hmm...I'm having trouble with this for some reason. I created a very simple one letter password for a serv-u user.

Password=cv12723EC657AFEE32D2C4F5BAB658D9AD

I type this in:

mdcrack.exe -V 12723EC657AFEE32D2C4F5BAB658D9AD

However it keeps going without guessing the password. Obviously since its only one letter it should guess it immediately. Anything I'm doing wrong?

BTW...I'm using MDCRACK 1.2

I just tried mdcrack..
and even i used the -V option..it still uses 100% of the cpu..

Plus..it keeps on going on and on..
but i had a more complex password i had to bruteforce..so i thought it just
needs more time..

But if vnet576 says it cant find a single char.. password..
maybe yes ? something is wrong ?

ok, to test it, crack this password:

(first 2 char's have already been removed )

there are 2 md5 cracking tools in the world wide web

one is called mdcrack(1) and the other one is called md5crack

first one (1)
put it in c:\tmp\ or c:\temp\ (one of these folders, i dont remember the exact one)
and you can resume your last session

second one (2)
much slower but need lower cpu

there also exist an gui for one of this tools
just search with google for mdcrack or md5crack

Collision found ! => ugabc

Any luck Stephen ?

where are the rest of the replies..?
Seems like they are gone?

yea, I noticed a few missing myself, probably durning the clean up last night.

Could someone try this one for me?

If i start mdcrack my pc crashes, also when i use it with -V

pb790D5AB7803AB50DD91127E0B73CBBB7

Serv-U hashes are generated like this:

Hash = md5sum(seed + password);

where seed are two random characters. the two random characters that are in fornt of the md5 sum are constant, so you only need to crack the rest of the password. You need to tell md5crack or whatever to put the two random chars infront of each string it tries.

hi i´m new! where are the tools to downlaod from?

why is everybody saying"use mdcrack"?tried it...not bad....but my system is useless when using mdcrack....i cant surf when mdcrack is running...takes my whole processor!!!

somebody also wrote something about cain 2.5....good programm...it bruteforces md2,md4 and md5 hashes....it also can sniff....and there is something on there with cisco hashes...dont know really for what...but other probelly do!!

the best thing about cain is....you can restart it where you quit...and you can put your own signs in...which mdcrack cant...cause this sign '€' is often used!!

if you guys use the search option then you will cain!!

gl and hf

Devil

Very nice info for finding if someone has attacked your ini files.