+- hashcat Forum (https://hashcat.net/forum)
+-- Forum: Deprecated; Previous versions (https://hashcat.net/forum/forum-29.html)
+--- Forum: Old oclHashcat Support (https://hashcat.net/forum/forum-38.html)
+--- Thread: Oracle 11 Auth_session and Auth_password (/thread-5507.html)
Oracle 11 Auth_session and Auth_password - ako0ri - 06-09-2016
I'm looking for option or trick to crack Oracle auth_password that taken from network
Is there any option in hashct for this?
RE: Oracle 11 Auth_session and Auth_password - gbox26 - 06-10-2016
(06-09-2016, 07:00 PM)ako0ri Wrote: I'm looking for option or trick to crack Oracle auth_password that taken from network
Is there any option in hashct for this?
http://www.soonerorlater.hu/index.khtml?article_id=512
http://www.ekoparty.org/archive/2012/PPT-Cryptographic_flaws_in_Oracle_Database_auth_protocol_v6.pdf
https://yaping123.wordpress.com/2008/09/02/network/
these links can help to implement code for hashcat
RE: Oracle 11 Auth_session and Auth_password - gbox26 - 06-10-2016
i think easiest way to crack is that we just hash our passwords and then try to decrypt auth_session with our hashed password and check for valid padding in begging of decrypted session. for ver 11.
RE: Oracle 11 Auth_session and Auth_password - ako0ri - 06-11-2016
Atom could you please answer my question?
Have you any plan to add this password type for Hashcat?
RE: Oracle 11 Auth_session and Auth_password - atom - 06-11-2016
This is the wrong place to ask for new algorithms. Please use github
RE: Oracle 11 Auth_session and Auth_password - ako0ri - 06-15-2016
Ok
I post my request on github 2 days ago https://github.com/hashcat/oclHashcat/issues/371
But nobody answer me yet
RE: Oracle 11 Auth_session and Auth_password - atom - 06-15-2016
you did not add example hash and plain