First Part Of Md5 Password

#1 SecureD

Private First Class

Group: Members
Posts: 137
Joined: 09-October 03

Post icon Posted 11 April 2005 - 12:41 AM

Hi guys,

Currently decrypting(LC5) a MD5 hash of a password retreived with pwdump2. Short passwords are decrypted fast. Passwords under a length of 8 within 5 hours with bruteforce. But now the point. For passwords longer then 8 I always get the first or last part of the decrypted version:

Admin NEWS2AL??????? 59437584B022409E08D30849C247BEB7 52F231C469D14904572FE56A3A028B0B 0

Is there a possible way to use this in further decryption so I get the pass faster?

Curious :)

#2 bonarez

Master Sergeant

Group: Specialist
Posts: 906
Joined: 17-March 04

Posted 11 April 2005 - 01:48 AM

think lc is cracking the lm hash!

since lm splits pw's in 2 parts and encrypts them each

Paraskavedeka Triaphoba

#3 SecureD

Private First Class

Group: Members
Posts: 137
Joined: 09-October 03

Posted 11 April 2005 - 04:02 AM

bonarez, on Apr 11 2005, 09:48 AM, said:

think lc is cracking the lm hash!

since lm splits pw's in 2 parts and encrypts them each

<{POST_SNAPBACK}>

Thanks, I think you are right. For other people more information about LM:
http://www.answers.com/topic/lm-hash

But what I can conclude, I just have to make the charset of the bruteforce audit bigger so It recognizes more passwords for the second part?

And do i have to enable 'crack NTLM Passwords'?

#4 buzzons

i wish i was admin

Group: Second Lieutenant
Posts: 1,817
Joined: 25-August 03

Posted 11 April 2005 - 04:08 AM

you are brute forcing, so all it is doing is checking a random string against the password, changing one letter and checking that, it has nothing to do with word lists. The only way to make it faster is to get a better CPU and ram (or join #rainbowcrak on the irc server and post the hash).

You do not need NTLM if its already cracking the password as this was enabled in 2000 / XP and has to be turned on. You only need it on if LC5 wont brute the password.

Buz

#5 bonarez

Master Sergeant

Group: Specialist
Posts: 906
Joined: 17-March 04

Posted 11 April 2005 - 05:30 AM

lc5 can do hybrid attacks, meaning it first does a dictionary attack, then a rainbowtable (if tables are present/enabled) then a bruteforce

best way is to make some rainbowtables > you can start a simle set, since the first part of the pw is only alpha I guess the last part will be alpha as well, so a simple alpha table will surely crack it quickly.

Paraskavedeka Triaphoba

#6 SecureD

Private First Class

Group: Members
Posts: 137
Joined: 09-October 03

Posted 11 April 2005 - 06:27 AM

bonarez, on Apr 11 2005, 01:30 PM, said:

<{POST_SNAPBACK}>

But why didn't it be cracked in the first place?

#7 fulvioo

Staff Sergeant

Group: Specialist
Posts: 251
Joined: 27-March 04

Posted 11 April 2005 - 07:23 AM

Try the site in my signature

#8 Hybr!d

Private

Group: Members
Posts: 13
Joined: 14-June 05

Posted 14 June 2005 - 10:44 PM

Get Cain and Abel the best cracker for loads of encryptions such as MD5,MD4,MD2,LM,Mysql,Cisco,Windows,VNC and so on. It uses Brute Force attack Dictionary attck and Cryptanalysis attack to crask the hash. Heres the link to download the program

http://www.oxid.it/d...ds/ca_setup.exe

#9 SecureD

Private First Class

Group: Members
Posts: 137
Joined: 09-October 03

Posted 15 June 2005 - 05:57 PM

Now i use rainbow tables instead of brute forcing ;-) Will work good!

#10 Warlord_David

Corporal

Group: Members
Posts: 154
Joined: 16-December 03

Posted 16 June 2005 - 10:50 AM

i too, recommend rainbow cracking, it gets the password in a few seconds DEPENDING on your systems performance..

Page 1 of 1

You cannot start a new topic
You cannot reply to this topic

Forums: First Part Of Md5 Password - Forums