02-02-2024, 10:03 PM
Hey guys,
Developers at my company are wanting to keep something secret by using a SHA512 hash for a 9 digit number. My understanding is that isn't secure (easy to bruteforce). They've asked me to prove I can crack the SHA512 hash they gave me. The issue I'm having though is it seems like the attack modes for SHA512 aren't the same as the results I receive from using shasum -a 512 or sha512sum. I even checked the examples here: https://hashcat.net/wiki/doku.php?id=example_hashes and using shasum -a 512 or sha512sum for the word hashcat returns a value that isn't present anywhere on that page.
For the value they've given me (using shasum to generate the value) I've been trying with attack mode 1700 and 17600 primarily (though I have tried most other sha 512 modes as well but most have formatting expectations that the value I have doesn't have).
I want to prove to them the SHA512 isn't secure for what they are wanting to do but I'm having issues getting any SHA512 mode to crack a value I get from shasum or even match based on the examples.
Is shasum using some method that hashcat doesn't support cracking for? Or can someone point me in the right direction.
Thanks!
Developers at my company are wanting to keep something secret by using a SHA512 hash for a 9 digit number. My understanding is that isn't secure (easy to bruteforce). They've asked me to prove I can crack the SHA512 hash they gave me. The issue I'm having though is it seems like the attack modes for SHA512 aren't the same as the results I receive from using shasum -a 512 or sha512sum. I even checked the examples here: https://hashcat.net/wiki/doku.php?id=example_hashes and using shasum -a 512 or sha512sum for the word hashcat returns a value that isn't present anywhere on that page.
For the value they've given me (using shasum to generate the value) I've been trying with attack mode 1700 and 17600 primarily (though I have tried most other sha 512 modes as well but most have formatting expectations that the value I have doesn't have).
I want to prove to them the SHA512 isn't secure for what they are wanting to do but I'm having issues getting any SHA512 mode to crack a value I get from shasum or even match based on the examples.
Is shasum using some method that hashcat doesn't support cracking for? Or can someone point me in the right direction.
Thanks!