1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

[ASK] Any Way To Crack Amember Salted Password?

Discussion in 'BlackHat Lounge' started by Unknown Overlord, Dec 19, 2011.

  1. Unknown Overlord

    Unknown Overlord Junior Member

    Joined:
    Nov 7, 2009
    Messages:
    104
    Likes Received:
    44
    I doubt this can be done but you never know. I need to be able to crack an amember admin password that is salted

    Anyone know if this can be bruted?
     
  2. southbayboredom

    southbayboredom Registered Member

    Joined:
    Dec 4, 2011
    Messages:
    78
    Likes Received:
    32
    If you know the salt, then you could compare it to a rainbow table. Without knowing the salt, you're likely screwed.

    This is written based on the assumption that you locked yourself out of your own site that you are the admin to.
     
    Last edited: Dec 19, 2011
  3. Black.Star

    Black.Star Junior Member

    Joined:
    Oct 4, 2011
    Messages:
    185
    Likes Received:
    1,028
    Occupation:
    IT security specialist
    Location:
    Europe
    Always possible... but not for us regular guys ;) (well really depends... password length, luck etc.)

    "There are always ways around a closed door.... often you will just end up infront on another one."
     
    Last edited: Dec 19, 2011
  4. trustedfire9

    trustedfire9 Jr. VIP Jr. VIP Premium Member

    Joined:
    Jun 15, 2010
    Messages:
    2,123
    Likes Received:
    1,787
    threads related with hacking isn't allowed here .
     
    • Thanks Thanks x 1
  5. Unknown Overlord

    Unknown Overlord Junior Member

    Joined:
    Nov 7, 2009
    Messages:
    104
    Likes Received:
    44
    This isn't hacking. It's my own table and I do know the salt obviously.
    This is purely for educational purposes because Amember says the admin
    accounts are not retrievable but coming from a cracking background I know
    everything is reversible.
     
    • Thanks Thanks x 1
  6. trustedfire9

    trustedfire9 Jr. VIP Jr. VIP Premium Member

    Joined:
    Jun 15, 2010
    Messages:
    2,123
    Likes Received:
    1,787
    fine what's the hash type ? or you don't know

    btw this will help you http://www.insidepro.com/
     
  7. n3xus

    n3xus Junior Member

    Joined:
    Apr 19, 2009
    Messages:
    121
    Likes Received:
    31
    hammers aren't reversible ;) but useless information aside good luck and dont get yourself shipped to gitmo
     
  8. Choronzon

    Choronzon Power Member

    Joined:
    Apr 20, 2008
    Messages:
    559
    Likes Received:
    376
    Try JTR (John the Ripper) if it is still about.
     
  9. Unknown Overlord

    Unknown Overlord Junior Member

    Joined:
    Nov 7, 2009
    Messages:
    104
    Likes Received:
    44
    Thanks. I know of JTR. Used it ages ago. I will check and see what happens.
     
  10. jazzc

    jazzc Moderator Staff Member Moderator Jr. VIP

    Joined:
    Jan 27, 2009
    Messages:
    2,468
    Likes Received:
    10,148
    If you know of the salt and the encryption algo, you can write a program to brute force it or you could even create the appropriate rainbow tables in case you want to do this for many hashes.
     
  11. Zapdos

    Zapdos Power Member

    Joined:
    Oct 22, 2011
    Messages:
    597
    Likes Received:
    708
    Location:
    Eastern North Carolina
    Rainbow tables are not the way to go with anything using unique salts. If the entire system had a static salt then you could try and justify it. For just one object though, you're wasting more time doing R/W to the disk than just doing it on the cpu/gpu/memory.

    As for if its possible, yes. There is however a difference. If its using MD5, SHA1, SHA* or other one-way algorithms then you can only attempt collisions. Actually decrypting it isn't possible. To brute force, you just need to make a program that uses the same algorithm as in the program, and provide the salt+hash. To get faster speeds you will need to optimize the algorithm itself to possibly bypass or cache certain parts.
    Something as simple as md5($pass.$salt) or sha1($pass.salt) can easily be bruteforced at over 1b/sec. Md5 is around 50 billion for GPGPU, SHA1 is around 10 billion.


    In short: You can bruteforce it, yes.
     
    • Thanks Thanks x 2
  12. jazzc

    jazzc Moderator Staff Member Moderator Jr. VIP

    Joined:
    Jan 27, 2009
    Messages:
    2,468
    Likes Received:
    10,148
    I assumed it was a static salt. You are totally correct that it would not make any sense to use RT for a dynamic salt.
     
    • Thanks Thanks x 1