hashcat Forum Support hashcat v
scrypt hash format

Threaded Mode
scrypt hash format
arlininger Offline
Junior Member
**
Posts: 2
Threads: 1
Joined: Aug 2019
#1
08-09-2019, 07:01 PM (This post was last modified: 08-09-2019, 07:02 PM by arlininger. Edit Reason: put hash in code )
Does hashcat support hashes in the format 
Code:
scrypt$01zMhhtsm7hd$11$8$1$64$zpJQwicV2twXVpabH8/kCTaKUlx99Xplim50HJY4BA81xJxIG/R2BQ4QHOW3h15AGusc5lhYso3UJjkiTRXXTQ==
?

Note, this particular hash is from the 2019 Crack me if you Can competition, which is the first time I've encountered scrypt hashes.

I don't see hashes of this format on the https://hashcat.net/wiki/doku.php?id=example_hashes page, but possibly this can be trivially transformed in to one that is there?

Adam
Find
Reply
undeath Offline
Sneaky Bastard
******
Posts: 2,301
Threads: 11
Joined: Jul 2010
#2
08-12-2019, 11:19 AM (This post was last modified: 08-12-2019, 11:22 AM by undeath.)
You have to reformat the hashes for cracking with hascat. Hashcat's format is SCRYPT:n:r:p:salt:hash

salt and hash are base64-encoded. I think hashcat only supports hash lengths of 32 bytes. You have to truncate the hash value to 32 bytes in the case of cmiyc hashes.
Find
Reply
royce Offline
Moderator à la mode
******
Posts: 930
Threads: 4
Joined: Jan 2015
#3
08-14-2019, 04:15 PM (This post was last modified: 08-14-2019, 04:17 PM by royce.)
Example method - script by atom.

Code:
#!/usr/bin/perl

use strict;
use warnings;
use MIME::Base64;

while (my $line = <>)
{
  chomp $line;

  my @data = split '\$', $line;

  if ($data[5] ne 64)
  {
    die "invalid\n";
  }

  my ($user, undef) = split '\:', $data[0];

  my $hash_bin = decode_base64($data[6]);

  my $hash_trunc = encode_base64(substr($hash_bin, 0, 32), "");

  my $salt_enc = encode_base64 ($data[1], "");

  printf ("%s:SCRYPT:%d:%d:%d:%s:%s\n", $user, 1<<$data[2], $data[3], $data[4], $salt_enc, $hash_trunc);

}
~
Find
Reply