hashcat Forum Deprecated; Previous versions Old hashcat Support v
Help for noob

Threaded Mode
Help for noob
Spamme Offline
Junior Member
**
Posts: 4
Threads: 1
Joined: Jan 2014
#1
01-26-2014, 08:14 PM
Hello

I'm new to hashcat and I wanted to use it to find out a salt, because I know what is hashed and the hash but I missing the salt. How can do it with hashcat? I have to create a file with the hashed text and the hash and then use the brute force attack?

Thanks for the help
Find
mastercracker Offline
Senior Member
****
Posts: 621
Threads: 57
Joined: May 2010
#2
01-27-2014, 03:33 AM
It depends on what algorithm was used. Sometimes it's possible to put as input the HashTongueass as if it was Hash:Salt in order to crack the salt.
Find
Spamme Offline
Junior Member
**
Posts: 4
Threads: 1
Joined: Jan 2014
#3
01-27-2014, 11:11 AM
Thanks for the reply, any way it's not a password, the hash algorithm is md5 and it's used as checksum, for this reason I know the text and its hash but I need to find out the salt.

So I create a file with the hash:text only and then I use the command:

hashcat -m 10 -a 3 mytexthashfile.txt

I suppose that the format is salt.pass, because I try to find the salt I have to use the reverse one, this means pass.salt mode, am I correct?
Moreover I think that the salt is just plain text with no upper case, numbers and special chars, do I have to specify a custom charset?

Thanks
Find
Spamme Offline
Junior Member
**
Posts: 4
Threads: 1
Joined: Jan 2014
#4
01-27-2014, 11:32 AM (This post was last modified: 01-27-2014, 11:34 AM by Spamme.)
I'm try to figure it out but it don't get it. I have made a test, let's say that the the salt is "md5" and the text is "function", I just create the hash for "md5function" and put it in a test.txt file, then I create a second file with the text "function" and I call it pass.txt.
Now I want to find the "md5" salt and I use the following command:

hashcat -m 10 -a 3 -e pass.txt test.txt ?a?a?a

But it doesn't find it, what is wrong?

Code:
Added hashes from file test.txt: 1 (1 salts)
Activating quick-digest mode for single-hash

NOTE: press enter for status-screen


Input.Mode: Mask (?a) [1]
Index.....: 0/1 (segment), 95 (words), 0 (bytes)
Recovered.: 0/1 hashes, 0/1 salts
Speed/sec.: - plains, - words
Progress..: 95/95 (100.00%)
Running...: --:--:--:--
Estimated.: --:--:--:--


Input.Mode: Mask (?a?a) [2]
Index.....: 0/1 (segment), 9025 (words), 0 (bytes)
Recovered.: 0/1 hashes, 0/1 salts
Speed/sec.: - plains, - words
Progress..: 9025/9025 (100.00%)
Running...: --:--:--:--
Estimated.: --:--:--:--


Input.Mode: Mask (?a?a?a) [3]
Index.....: 0/1 (segment), 857375 (words), 0 (bytes)
Recovered.: 0/1 hashes, 0/1 salts
Speed/sec.: 13.74M plains, 13.74M words
Progress..: 857375/857375 (100.00%)
Running...: --:--:--:--
Estimated.: --:--:--:--
Find
undeath Offline
Sneaky Bastard
******
Posts: 2,301
Threads: 11
Joined: Jul 2010
#5
01-27-2014, 12:08 PM
Code:
~> echo -n md5function | md5sum | sed 's;^\(.\{32\}\).*$;\1:function;' > /tmp/hash
~> ./hashcat-cli64.bin -m 10 -a 3 /tmp/hash "?a?a?a"                              
Initializing hashcat v0.47 by atom with 8 threads and 32mb segment-size...

Added hashes from file /tmp/hash: 1 (1 salts)
Activating quick-digest mode for single-hash with salt

NOTE: press enter for status-screen


Input.Mode: Mask (?a) [1]
Index.....: 0/1 (segment), 95 (words), 0 (bytes)
Recovered.: 0/1 hashes, 0/1 salts
Speed/sec.: - plains, - words
Progress..: 95/95 (100.00%)
Running...: --:--:--:--
Estimated.: --:--:--:--


Input.Mode: Mask (?a?a) [2]
Index.....: 0/1 (segment), 9025 (words), 0 (bytes)
Recovered.: 0/1 hashes, 0/1 salts
Speed/sec.: - plains, - words
Progress..: 9025/9025 (100.00%)
Running...: --:--:--:--
Estimated.: --:--:--:--

190c0b684aefa1ccd96dc2eaeac741d6:function:md5

All hashes have been recovered

Input.Mode: Mask (?a?a?a) [3]
Index.....: 0/1 (segment), 857375 (words), 0 (bytes)
Recovered.: 1/1 hashes, 1/1 salts
Speed/sec.: - plains, - words
Progress..: 760874/857375 (88.74%)
Running...: --:--:--:--
Estimated.: --:--:--:--

Started: Mon Jan 27 11:07:18 2014
Stopped: Mon Jan 27 11:07:18 2014

works for me
Find
Spamme Offline
Junior Member
**
Posts: 4
Threads: 1
Joined: Jan 2014
#6
01-27-2014, 12:26 PM
Thanks it was using the pass.txt as hash file, now it works:

hashcat-cli64.exe -m 10 -a 3 --salt-file=pass.txt test.txt ?a?a?a

Code:
Initializing hashcat v0.47 by atom with 8 threads and 32mb segment-size...

Added external salts from file pass.txt: 1 salts
Added hashes from file test.txt: 1 (1 salts)
Activating quick-digest mode for single-hash

NOTE: press enter for status-screen


Input.Mode: Mask (?a) [1]
Index.....: 0/1 (segment), 95 (words), 0 (bytes)
Recovered.: 0/1 hashes, 0/1 salts
Speed/sec.: - plains, - words
Progress..: 95/95 (100.00%)
Running...: --:--:--:--
Estimated.: --:--:--:--


Input.Mode: Mask (?a?a) [2]
Index.....: 0/1 (segment), 9025 (words), 0 (bytes)
Recovered.: 0/1 hashes, 0/1 salts
Speed/sec.: - plains, - words
Progress..: 9025/9025 (100.00%)
Running...: --:--:--:--
Estimated.: --:--:--:--

190c0b684aefa1ccd96dc2eaeac741d6:function:md5

All hashes have been recovered

Input.Mode: Mask (?a?a?a) [3]
Index.....: 0/1 (segment), 857375 (words), 0 (bytes)
Recovered.: 1/1 hashes, 1/1 salts
Speed/sec.: - plains, 3.84M words
Progress..: 839096/857375 (97.87%)
Running...: --:--:--:--
Estimated.: --:--:--:--
Find