EPiServer hash format
#5
(03-23-2012, 10:37 AM)atom Wrote: It looks like that in the JtR source is somehow different to your expectation. I guess the algorithm changed in the meanwhile.
  • Inside the JtR source it says the salt length is of fixed size 30 (binary).
  • Your base64 encoded example salt decodes to a salt of length 16 (binary)?
  • JtR expects an hex format, not base64.

This is from JtR source with their values and it works:

Quote:root@ht:~/oclHashcat-plus-0.08# perl -e 'print "\x5F\x1D\x84\xA6\xDE\x97\xE2\xBE\xFB\x63\x7A\x3C\xB5\x31\x8A\xFE\xF0\x75\x0B\x85\x6C\xF1\x83\x6B\xD1\xD4\x47\x01\x75Abc.!23\x00"' | sha1sum
4d5efdfa143edf74193076f174ac47cebf2f417f -

I played a bit with your Base64 values:

Hash: UQgnz/vPWap9UeD8Dhaw3h/fgFA= -> 510827cffbcf59aa7d51e0fc0e16b0de1fdf8050
Salt: fGJ2wn/5WlzqQoDeCA2kXA== -> 7c6276c27ff95a5cea4280de080aa45c

Quote:root@ht:~/oclHashcat-plus-0.08# perl -e 'print "\x7c\x62\x76\xc2\x7f\xf9\x5a\x5c\xea\x42\x80\xde\x08\x0a\xa4\x5ctestPassword"' | sha1sum
3e0f809853d3fbdf392a2959ccf803ee6312d401 -

... does not match, so i tried original algorithm:

Quote:root@ht:~/oclHashcat-plus-0.08# perl -e 'print "\x7c\x62\x76\xc2\x7f\xf9\x5a\x5c\xea\x42\x80\xde\x08\x0a\xa4testPassword\x00"' | sha1sum
988c21fec2c4fd168201bba7b7ec4f266a270ecd -

... still does not match

Without the exact algorithm I cant do anything, sorry

Hm. Well, I will spend some time looking for the answers to this little puzzle. I'm pretty sure it can be found somewhere inside the episerver documentation, second I'll ask some other friends in crypto to have a look at it. :-)

I'll get back as soon as I have something more useful. Thx atom!


Messages In This Thread
EPiServer hash format - by thorsheim - 03-16-2012, 12:12 AM
RE: EPiServer hash format - by atom - 03-16-2012, 06:15 PM
RE: EPiServer hash format - by thorsheim - 03-16-2012, 08:21 PM
RE: EPiServer hash format - by atom - 03-23-2012, 10:37 AM
RE: EPiServer hash format - by thorsheim - 03-23-2012, 11:18 AM
RE: EPiServer hash format - by atom - 03-23-2012, 05:07 PM
RE: EPiServer hash format - by thorsheim - 03-27-2012, 12:25 PM
RE: EPiServer hash format - by atom - 03-27-2012, 03:17 PM
RE: EPiServer hash format - by thorsheim - 03-27-2012, 03:27 PM
RE: EPiServer hash format - by sk5t - 03-27-2012, 05:48 PM
RE: EPiServer hash format - by atom - 03-27-2012, 06:07 PM
RE: EPiServer hash format - by thorsheim - 03-27-2012, 10:26 PM
RE: EPiServer hash format - by thorsheim - 04-04-2012, 11:25 PM
RE: EPiServer hash format - by thorsheim - 04-05-2012, 01:08 AM
RE: EPiServer hash format - by atom - 04-06-2012, 09:43 AM
RE: EPiServer hash format - by atom - 05-06-2012, 12:55 AM
RE: EPiServer hash format - by thorsheim - 05-06-2012, 01:03 AM
RE: EPiServer hash format - by atom - 05-06-2012, 03:37 PM
RE: EPiServer hash format - by troyhunt - 06-20-2012, 02:29 PM
RE: EPiServer hash format - by atom - 06-20-2012, 03:49 PM
RE: EPiServer hash format - by troyhunt - 06-21-2012, 01:12 AM
RE: EPiServer hash format - by atom - 09-07-2012, 05:12 PM