05-21-2018, 07:20 PM
(This post was last modified: 05-21-2018, 09:02 PM by roomtoetje.)
Hi folks,
i'm having a complex situation here. I think i'll just share alle the information, maybe there is any geek around who is able to help me into the right direction.
What is the plan?
I bought an old machine that does certain treatments. The company who made it is broke, and stopped all support for their devices. (yes, that is crap, but true).
In the device is a license system that grants an amount of treatments.
The license keys were always free when you bought disposables/supplies from the company, but they don't sell supplies nor licenses anymore.
Now, i found someone who makes the supplies that fit my machine. I just need to find out how to bypass the license system. You might wonder why i am even trying to do this? Well, the older version of this machine used a deadly easy license system (just follow-up numbers + some random numbers around it). So i guess this should'nt be so hard even. And beside that, the machine did'nt cost me alot and i like to make a little gamble.
The codes
The codes that are entered on the device, are base64 (well, i think they are.).
In the machine are some treatments left. These codes we're given in a while ago, and still work:
Decoding
Well, if they are base64... then why not just decode them?
Well, i did just that. The outcome is as follows:
As you can see, there is a lot of abracadabra in here.
To me this seems like MD5-RAW. Right? Correct me if i'm wrong here.
The bruteforce
I own a 6x Nvidia 1070 miner. This machine loves hashcat.
Now i need a commandline that somehow firsts does a base64_decode, and then compare my mask to the md5_raw.
I expect the input string to be something like 1234-12345678-x. So i want to bruteforce that against my list.
Can someone please think with me, and point me into the right direction?
Thanks for your kinds support.
If you need more information, please ask me.
i'm having a complex situation here. I think i'll just share alle the information, maybe there is any geek around who is able to help me into the right direction.
What is the plan?
I bought an old machine that does certain treatments. The company who made it is broke, and stopped all support for their devices. (yes, that is crap, but true).
In the device is a license system that grants an amount of treatments.
The license keys were always free when you bought disposables/supplies from the company, but they don't sell supplies nor licenses anymore.
Now, i found someone who makes the supplies that fit my machine. I just need to find out how to bypass the license system. You might wonder why i am even trying to do this? Well, the older version of this machine used a deadly easy license system (just follow-up numbers + some random numbers around it). So i guess this should'nt be so hard even. And beside that, the machine did'nt cost me alot and i like to make a little gamble.
The codes
The codes that are entered on the device, are base64 (well, i think they are.).
In the machine are some treatments left. These codes we're given in a while ago, and still work:
Code:
1vZOlhtCXL+PLoneWTo0Ng
I2jeOeznDKOHtmy6og4wQg
PUbEGIjdCDLEww4Yz5A0+g
vo5ynZ34070IunIjS4RTdw
/Ixh7vSQFisNtkvkCI27Aw
C/MsAno5fLPjHwYG75TLPQ
Decoding
Well, if they are base64... then why not just decode them?
Well, i did just that. The outcome is as follows:
Code:
��N�B\��.��Y:46
#h�9�����l��0B
=F���2��ϐ4�
��r���ӽ�r#K�Sw
��a���+ �K���
�,z9|����=
To me this seems like MD5-RAW. Right? Correct me if i'm wrong here.
The bruteforce
I own a 6x Nvidia 1070 miner. This machine loves hashcat.
Now i need a commandline that somehow firsts does a base64_decode, and then compare my mask to the md5_raw.
I expect the input string to be something like 1234-12345678-x. So i want to bruteforce that against my list.
Can someone please think with me, and point me into the right direction?
Thanks for your kinds support.
If you need more information, please ask me.