02-10-2021, 04:58 PM
Dear Support,
Is it possible for hashcat to crack something like this:
# hash_hmac(PASSWORD_HASH_ALGOS, $str . ":" . AUTH_MAGIC, $salt);
php -r '$hash=hash_hmac("sha256","your_passwd:hogehoge","saltishere");var_dump($hash);'
string(64) "xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx"
if we forget the Auth_Magic?
Supposed we have only SHA256 and Salt?
Thanks and appreciate your inputs and comments,
Is it possible for hashcat to crack something like this:
# hash_hmac(PASSWORD_HASH_ALGOS, $str . ":" . AUTH_MAGIC, $salt);
php -r '$hash=hash_hmac("sha256","your_passwd:hogehoge","saltishere");var_dump($hash);'
string(64) "xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx"
if we forget the Auth_Magic?
Supposed we have only SHA256 and Salt?
Thanks and appreciate your inputs and comments,