09-07-2018, 03:46 AM
I have been trying to crack the hash of my OSX 10.11 mac using the established .plist extraction method, but even using all the correct options (as far as I know,) I get Token length exception no matter what I do! Specifically, I get this:
I have extracted the salt, hash, and iterations from my mac's plist, and orginized them in the format
and I have confirmed that my hash is extracted correctly, at least in that the iteration is a 5-digit number, the salt is a 64 character string in hex, and the entropy is a 256 character string also in hex. I have been using -m 7100, and it seems as if others cracking the same password type have had success with this, but I always recive Token length exception. The example hash for the 7100 option is a 128 character hex, but as I said, I have seen others using the 256 char hash. Do I have the wrong hash type? Or have I somehow extracted it wrong?
My hash (with a couple bits changed, but the same length) is this:
$ml$38167$4fb7de70c60407a7542932b1fe8f8bd366bad000066e9607687ef1503fe094a5$0feb2bb941c7e8b71d58e1e882270058892b92e97f80c89e1ab4e0b9405078b925ea08957f3c9741cd1723a11a049c3a3f99f8173fdeb3c8dfd5bd6717537372d66e4098c60b6f653489d8233c7c8b2239acc71a8f347b26d5262bb7bf3755baed57e564d67f976a11589002ff2a591befc9a7d183523cac2bdb2e84ed75a6e6
Code:
PS C:\Cracking\HashCat\hashcat-4.2.1> .\hashcat64.exe -m 7100 -a 0 C:\Cracking\Hashes\MyHash.txt C:\Cracking\Wordlists\rockyou.txt
hashcat (v4.2.1) starting...
* Device #1: WARNING! Kernel exec timeout is not disabled.
This may cause "CL_OUT_OF_RESOURCES" or related errors.
To disable the timeout, see: https://hashcat.net/q/timeoutpatch
nvmlDeviceGetFanSpeed(): Not Supported
OpenCL Platform #1: NVIDIA Corporation
======================================
* Device #1: GeForce GTX 980, 2048/8192 MB allocatable, 16MCU
Hashfile 'C:\Cracking\Hashes\MyHash.txt' on line 1 ($ml$38...efc9a7d183523cac2bdb2e84ed75a6e6): Token length exception
No hashes loaded.
Started: Thu Sep 06 20:17:34 2018
Stopped: Thu Sep 06 20:17:34 2018
PS C:\Cracking\HashCat\hashcat-4.2.1>
I have extracted the salt, hash, and iterations from my mac's plist, and orginized them in the format
Code:
$ml$iterations$salt$entropy
My hash (with a couple bits changed, but the same length) is this:
$ml$38167$4fb7de70c60407a7542932b1fe8f8bd366bad000066e9607687ef1503fe094a5$0feb2bb941c7e8b71d58e1e882270058892b92e97f80c89e1ab4e0b9405078b925ea08957f3c9741cd1723a11a049c3a3f99f8173fdeb3c8dfd5bd6717537372d66e4098c60b6f653489d8233c7c8b2239acc71a8f347b26d5262bb7bf3755baed57e564d67f976a11589002ff2a591befc9a7d183523cac2bdb2e84ed75a6e6