07-18-2019, 03:37 AM
Can developers modify the CSICO ASA module (2410) to allow for no username/salt when running a hash. The ASA enable password is the same format as the username/password hash, but has no username. If a hash is attempted without the salt hashcat throws some length error and won't allow a NULL value for the username portion.
Example:
hashcat64.bin -m2410 -a3 XXXXXXXXXXXXXXXX:
*note after the colon is blank since the enable password has no username and therefore no salt (salt is based on username)
Result:
Hash 'XXXXXXXXXXXXXXXX:': Token length exception
Thanks for any insight/fixes
Example:
hashcat64.bin -m2410 -a3 XXXXXXXXXXXXXXXX:
*note after the colon is blank since the enable password has no username and therefore no salt (salt is based on username)
Result:
Hash 'XXXXXXXXXXXXXXXX:': Token length exception
Thanks for any insight/fixes