(08-04-2020, 09:44 PM)philsmd Wrote: well, it's difficult to say. we would need to have the exact algorithm with input and output (masked hashes if really needed, but first let's discuss it in more detail... also see forum rules which do NOT allow posting hashes).
--hex-salt
could be for instance one solution if the salt is in hex instead of raw/plain.
I put the hash into hash-identifier and it returns:
[+] SHA-1
[+] MySQL5 - SHA-1(SHA-1($pass))
Which I believe it is just sha1. The salt appears to be just plain text.