jigkin21 Posted November 11, 2007 Share Posted November 11, 2007 Hello there, I am learning Information Security at my school. My professor gave us one homework. He sent us email as per below in the curley bracket: {{{{{{{{{{{{{{{{ I have attached a zip file. There is one image which contains a hidden file. The file itself is encrypted in the image using a cryptographic algorithm named "Blow Fish". It uses a symmetric key which you need to break. The software I used to create this file is called JPHS for windows. The hash file you can use Cain, John the ripper or any other utility to guess the hashed message. The hash file + key. you need to determine what the key is and then use the previous process to guess the content. . . (brute force attack) Both hashes use MD5. Good luck. . . }}}}}}}}}}}}}}}}} I have found the password using brute force attack software (cain). Password is "hacker". Now can any one do rest of work for me , please? I have tried lots of other ways but not get it done. My prof. said to me that i have to use JPHS for rest of other work. But still not happy. Please find attached files and try to help me. hw file got image (which have hidden data) and two notepad files with hash + hashkey. And another file is JPHS. Below is the link for image and two hash file. Please help me guys. Waiting for some genius's reply, thanks bros, G. hxxp: rapidshare. com/files/68832225/hw. zip. html Quote Link to comment Share on other sites More sharing options...
digip Posted November 11, 2007 Share Posted November 11, 2007 http://linux01.gwdg.de/~alatham/stego.html You use the password provided against the file using a steonogrophy program to extract the message. Quote Link to comment Share on other sites More sharing options...
moonlit Posted November 11, 2007 Share Posted November 11, 2007 <kindling> <petrol> <match> That'd be cracking... Quote Link to comment Share on other sites More sharing options...
digip Posted November 11, 2007 Share Posted November 11, 2007 Looks like someone already made it over to Plain Text: c1bc679a64484509cb5f8afb90d99eb7 is in the process of being cracked since "2007-11-11 07:17:51" Quote Link to comment Share on other sites More sharing options...
metatron Posted November 11, 2007 Share Posted November 11, 2007 You posted this on BinRev, no ones cares, do it yourself. Quote Link to comment Share on other sites More sharing options...
jigkin21 Posted November 15, 2007 Author Share Posted November 15, 2007 Thanks for your reply digip and moonlit, I have confirmed with my professor and he said that you can use JHPS for further process. I tried that software too but it says passphrase is wrong. To break this image, i need to break this hash key : c1bc679a64484509cb5f8afb90d99eb7. I have told by one genius hacker that it used 128 bits key so it is really hard to crack. I think i need really faster machine to break this key. I got dual core 2 which is not faster enough. Please let me know if there is any help, thanks guys............ Note for Matatron: It is really easy to write one line but this is called work and really hacking. lol otherwise there are bunch of website where we can just get the password of any hash key within 5 second. So if you dont know the answer than its better to hide your a**. Quote Link to comment Share on other sites More sharing options...
GonZor Posted November 15, 2007 Share Posted November 15, 2007 Note for Matatron: It is really easy to write one line but this is called work and really hacking. lol otherwise there are bunch of website where we can just get the password of any hash key within 5 second. So if you dont know the answer than its better to hide your a**. I get the feeling you don't know much about metatron... Run while you still have legs :shock: Quote Link to comment Share on other sites More sharing options...
Deveant Posted November 15, 2007 Share Posted November 15, 2007 Note for Matatron: It is really easy to write one line but this is called work and really hacking. This isnt hacking, not even steg is classed as hacking, this is simply cracking using skiddie tools. Quote Link to comment Share on other sites More sharing options...
cooper Posted November 15, 2007 Share Posted November 15, 2007 And worse yet, YOU ain't doing it. Quote Link to comment Share on other sites More sharing options...
K1u Posted November 16, 2007 Share Posted November 16, 2007 Note for Matatron: It is really easy to write one line but this is called work and really hacking. This isnt hacking, not even steg is classed as hacking, this is simply cracking using skiddie tools. If you wanted to you could easily program a inefficient MD5 cracker in not to much time. Lol... but yes it is basically cracking using others tools, takes no skill, only knowledge it takes is knowing what its crypted in. Quote Link to comment Share on other sites More sharing options...
jigkin21 Posted November 16, 2007 Author Share Posted November 16, 2007 Hello guys, First of all, some people are here to just post and shows that they are mastermind but they are not. I posted something because i didnt know something and that is why we use this forum. So dont think few of them who posted me last are mastermind (GonZor,Deveant,Cooper,K1u). Even though its cracking (lol) nobody could do this simple work. Well, i believe and accept that i am newbie in hacking field but now i think i know more better than you few guys who posted me last. I got the answer. To crack this hash file (c1bc679a64484509cb5f8afb90d99eb7), we need to have software called “stegdetect-0.4”. Now a question is how we can use this software!!! Below are the steps: (1) Make sure that you keep this software, image file, hash file and wordlist list file (dictionary file) in one folder. (2) First Go to command prompt (3) C:/whatever the file is/ (type) stegbreak(space) –r rules.ini(space) –f(space) wordlist.ini(space) imagesteg.jpg (4) And hit enter (Just to tell you one thing that you have to download whole dictionary words and save as wordlist.ini in that folder) (5) You will see a password their beside bracket called “zorro” (6) Now go to JPHS software as I have mentioned in above post (7) Click Open Image and select the imagesteg.jpg file (8 ) Now click on Seek tab and type password “zorro” (9) It will ask you for save destination, just save as a .txt file (10) Here we are in business, check that file after save it, You will see hidden text file which says “You guys are best”. After 9-11, most of the company’s manager or bank manager who wants to send something secret via email, they use this technique. I might have some more homework from my professor who’s working with one of the leading bank in US. Anyway Thanks guys for your co-operation, G. :-P :-P :-P :-P :-P :-P :-P :-P :-P :-P Quote Link to comment Share on other sites More sharing options...
SmoothCriminal Posted November 16, 2007 Share Posted November 16, 2007 Hello guys, Well, i believe and accept that i am newbie in hacking field but now i think i know more better than you few guys who posted me last. QFE! Quote Link to comment Share on other sites More sharing options...
Deveant Posted November 16, 2007 Share Posted November 16, 2007 Hello guys, First of all, some people are here to just post and shows that they are mastermind but they are not. I posted something because i didnt know something and that is why we use this forum. So dont think few of them who posted me last are mastermind (GonZor,Deveant,Cooper,K1u). Even though its cracking (lol) nobody could do this simple work. Well, i believe and accept that i am newbie in hacking field but now i think i know more better than you few guys who posted me last. None of us call our selfs Masterminds, nor do we try to be, no one helped u becuase u should we spoon feed you, you want knowlegde, then ask for it, not for the work to be done. I provided u with knowledge, as the thing you were asking for was simply misleading / labled. K1u also provided knowledge, GonZor was sticking up for other forum members u were flaming, and Cooper was saying pretty much what everyone else has been. Since u recieved this as homework, u are capable of completing it your self. Quote Link to comment Share on other sites More sharing options...
SomeoneE1se Posted November 16, 2007 Share Posted November 16, 2007 Hello guys, First of all, some people are here to just post and shows that they are mastermind but they are not. I posted something because i didnt know something and that is why we use this forum. So dont think few of them who posted me last are mastermind (GonZor,Deveant,Cooper,K1u). Even though its cracking (lol) nobody could do this simple work. Well, i believe and accept that i am newbie in hacking field but now i think i know more better than you few guys who posted me last. I got the answer. To crack this hash file (c1bc679a64484509cb5f8afb90d99eb7), we need to have software called “stegdetect-0.4”. Now a question is how we can use this software!!! Below are the steps: (1) Make sure that you keep this software, image file, hash file and wordlist list file (dictionary file) in one folder. (2) First Go to command prompt (3) C:/whatever the file is/ (type) stegbreak(space) –r rules.ini(space) –f(space) wordlist.ini(space) imagesteg.jpg (4) And hit enter (Just to tell you one thing that you have to download whole dictionary words and save as wordlist.ini in that folder) (5) You will see a password their beside bracket called “zorro” (6) Now go to JPHS software as I have mentioned in above post (7) Click Open Image and select the imagesteg.jpg file (8 ) Now click on Seek tab and type password “zorro” (9) It will ask you for save destination, just save as a .txt file (10) Here we are in business, check that file after save it, You will see hidden text file which says “You guys are best”. After 9-11, most of the company’s manager or bank manager who wants to send something secret via email, they use this technique. I might have some more homework from my professor who’s working with one of the leading bank in US. Anyway Thanks guys for your co-operation, G. :-P :-P :-P :-P :-P :-P :-P :-P :-P :-P okay i've tried to stay out of this thread and avoid flame roasting you but I cant help it any more... no you don't know better then (GonZor,Deveant,Cooper, k1u ) they only pointed to on where to look they didn't try to do it for you or hand feed you the answer i am newbie in hacking field but now i think i know more better than you few guys who posted me last. no trust me you don't 'know more better' then anyone... barring panarchy You posted this on BinRev, no ones cares, do it yourself.qfeAnd worse yet, YOU ain't doing it.qfe Note for Matatron: It is really easy to write one line but this is called work and really hacking. lol otherwise there are bunch of website where we can just get the password of any hash key within 5 second. So if you dont know the answer than its better to hide your a**. I get the feeling you don't know much about metatron... Run while you still have legs :shock: qfe qfe None of us call our selfs Masterminds, nor do we try to be, no one helped u becuase u should we spoon feed you, you want knowlegde, then ask for it, not for the work to be done. I provided u with knowledge, as the thing you were asking for was simply misleading / labled. K1u also provided knowledge, GonZor was sticking up for other forum members u were flaming, and Cooper was saying pretty much what everyone else has been. Since u recieved this as homework, u are capable of completing it your self. qfe.. well maybe he is very much a n00b Quote Link to comment Share on other sites More sharing options...
VaKo Posted November 16, 2007 Share Posted November 16, 2007 People, play nicely ffs. Quote Link to comment Share on other sites More sharing options...
jollyrancher82 Posted November 16, 2007 Share Posted November 16, 2007 I r mastermind. Quote Link to comment Share on other sites More sharing options...
jigkin21 Posted November 16, 2007 Author Share Posted November 16, 2007 Hey guys, I am not here to fight or blam but i am just expressing my feelings. I did some work by myself before i submit my post and i asked to get some help that how i can i do that. I didnt ask help you guys to finish my work and tell me what is the answer. I just asked that how can i finish this. Nevermind, be like friends as i am here to get help and give help. :-P I do apologize if someone felt wrong or misunderstood me. lets enjoy guys..... G. Quote Link to comment Share on other sites More sharing options...
SomeoneE1se Posted November 16, 2007 Share Posted November 16, 2007 I did some work by myself before i submit my post and i asked to get some help that how i can i do that. I didnt ask help you guys to finish my work and tell me what is the answer. I just asked that how can i finish this. uhhh dude... that's exactly what you did Now can any one do rest of work for me , please? don't be a n00b <-- always good advice Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.