k.doug Posted September 15, 2017 Posted September 15, 2017 I got the crib and the encrypted version, i need to find the key. The input is a 16 byte Hex sequence and the output is a 64-byte Hex sequence. Im not sure of the type of enccryption, im thinking about SHA256-512. but im not sure How can I do the known plaintext attack. its not a file, its a simple text Which type of encryption do you think its possible to be ? Quote
digip Posted September 15, 2017 Posted September 15, 2017 No clue what you're talking about, but if it's cracking a hash you want to reverse, try throwing it in a file and cracking with JTR. John will tell you what kind of hash it thinks it is and can try multiple hash attacks against it without the need to specify the hash like hashcat will want. if it's a wireless key, might need to convert it for cracking. Quote
PoSHMagiC0de Posted September 15, 2017 Posted September 15, 2017 If running a pentest framework you should have an app called hashid or idhash, forgot the name order. It will let you know what things it looks like to give you an idea. Quote
k.doug Posted September 15, 2017 Author Posted September 15, 2017 I did test the ID hash, but the possible hashs are SHA512 and Whirlpool however when i run some online tool, they do get it right. Quote
k.doug Posted September 15, 2017 Author Posted September 15, 2017 Then im now sure it a encryption with a special key, but how could i get the key? with a Known plaintext attack? how can I do that? Quote
k.doug Posted September 18, 2017 Author Posted September 18, 2017 here the Hash 2B7FEF0F82A51EEA6A6922ADE609DB288E676F591B28D5F7241DBF84F0AE2E20A00A73A52234BDE76492A01EDD8D13B722343E6F9C5DF8AA18922A92D714FC66 On 9/15/2017 at 5:48 PM, k.doug said: Then im now sure it Quote
0phoi5 Posted September 21, 2017 Posted September 21, 2017 (edited) 128 characters, numbers and A-F/a-f letters. According to this page, it could potentially be: SHA-512 Whirlpool GOST R 34.11-2012 (Streebog) 512-bit You can post on HashKiller's forums to get confirmation. Pretty sure it's SHA-512, which you can crack with HashCat. Edited September 21, 2017 by haze1434 Quote
0phoi5 Posted September 25, 2017 Posted September 25, 2017 (edited) On 18/09/2017 at 2:14 PM, k.doug said: here the Hash 2B7FEF0F82A51EEA6A6922ADE609DB288E676F591B28D5F7241DBF84F0AE2E20A00A73A52234BDE76492A01EDD8D13B722343E6F9C5DF8AA18922A92D714FC66 What's the context of the source of this hash? Known password length? Do you know what characters would be involved (uppercase, lowercase, numbers, symbols)? Edited September 25, 2017 by haze1434 Quote
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.