New Hashmode 29700

[DerMagistrat]

Hey there,

I just updated to hashcat 6.2.6. I have used autodetection mode for one of my keepass hashes in the past. Now it shows a new possible hashmode 29700 besides 13400. I couldn't find any documentation on this one. Could somebody explain the difference?

[marc1n]

There is no such mod 29700 list available here https://hashcat.net/wiki/doku.php?id=example_hashes

[DerMagistrat]

There is no such mod 29700 list available here https://hashcat.net/wiki/doku.php?id=example_hashes

This page is not uptodate. If you run hashcat.bin --help you get the following:

Code:

13400 | KeePass 1 (AES/Twofish) and KeePass 2 (AES) | Password Manager

29700 | KeePass 1 (AES/Twofish) and KeePass 2 (AES) - keyfile only mode | Password Manager

[marc1n]

There is no such mod 29700 list available here https://hashcat.net/wiki/doku.php?id=example_hashes

This page is not uptodate. If you run hashcat.bin --help you get the following:

Code:

13400 | KeePass 1 (AES/Twofish) and KeePass 2 (AES) | Password Manager

29700 | KeePass 1 (AES/Twofish) and KeePass 2 (AES) - keyfile only mode | Password Manager

Ok this is mode to break keepass key file

[DerMagistrat]

There is no such mod 29700 list available here https://hashcat.net/wiki/doku.php?id=example_hashes

This page is not uptodate. If you run hashcat.bin --help you get the following:

Code:

13400 | KeePass 1 (AES/Twofish) and KeePass 2 (AES) | Password Manager

29700 | KeePass 1 (AES/Twofish) and KeePass 2 (AES) - keyfile only mode | Password Manager

Ok this is mode to break keepass key file

Ah, makes sense. Thank you!

[royce]

29700 has been added to the example_hashes wiki page - thanks for the heads-up! Since it's the keyfile-only mode, it required a non-standard password that had to be footnoted, etc. so i can see why someone may have kicked that can down the road.