hashcat Forum

hashcat Forum > Deprecated; Previous versions > Old hashcat Support > vBulletin MD5 without Salts
Full Version: vBulletin MD5 without Salts
You're currently viewing a stripped down version of our content. View the full version with proper formatting.

moplayer

11-02-2011, 03:04 PM
Hello I wanted to encrypt some vBulletin Hashes. The problem is that there is only the MD5 without any Salt.

I saw a video on how to do that :

http://www.youtube.com/watch?v=DLEYQCzoxVo

But there is no md5(md5($pass).$salt) as Hash type in hashcat-gui (CPU). I know there is one for vBulletin but I can't add a salt (brute-vbulletin.salt).

How do I solve this problem?

K9

11-02-2011, 03:17 PM
Use the salt file. hashcat/salts/brute-vbulletin.salt

hashcat-cli.exe -a 0 -m 5 -e salts\brute-vbulletin.salt...

[Image: d448c2b8-png_thumb.jpg]
[Image: UKpq5Jtn.png]

moplayer

11-02-2011, 03:21 PM
which GUI is that?

K9

11-02-2011, 04:44 PM
The gui of hakre

moplayer

11-02-2011, 04:53 PM
I only found out this about his GUI http://hakre.wordpress.com

Can you please tell me where to find his GUI?
Because there are no old versions of them for download anymore.

K9

11-02-2011, 10:03 PM
I got some old versions but I guess its better to use the command line

moplayer

11-02-2011, 10:41 PM
Thank you for you support K9_

But I'm not seeing any results. Altough I have a huge and good wordlist. Why?

mastercracker

11-03-2011, 07:03 AM
(11-02-2011, 10:41 PM)moplayer Wrote: [ -> ]Thank you for you support K9_

But I'm not seeing any results. Altough I have a huge and good wordlist. Why?
Maybe they are not Vbulletin hashes or if they are Vbulletin > 3.8.5 then this method can't work. The method is for 3 character salts and the newer versions of Vbulletin uses 30 characters salts which are impossible to have a list of unless you extract them with the hashes.

moplayer

11-04-2011, 03:31 AM
(11-03-2011, 07:03 AM)mastercracker Wrote: [ -> ]
(11-02-2011, 10:41 PM)moplayer Wrote: [ -> ]Thank you for you support K9_

But I'm not seeing any results. Altough I have a huge and good wordlist. Why?
Maybe they are not Vbulletin hashes or if they are Vbulletin > 3.8.5 then this method can't work. The method is for 3 character salts and the newer versions of Vbulletin uses 30 characters salts which are impossible to have a list of unless you extract them with the hashes.

Oh, thank you. Yes it is Vbulletin > 3.8.5 Sad
No chance?

undeath

11-04-2011, 03:34 PM
of course you could try to bruteforce a password AND a 30 character salts. It only slightly increases the work. 95^8 for the password and 95^30 for the salt. All in all 95^8+95^30. I don't think you will finish in this century.
hashcat Forum > Deprecated; Previous versions > Old hashcat Support > vBulletin MD5 without Salts