Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Message-ID: <20240916233904.GA27134@openwall.com>
Date: Tue, 17 Sep 2024 01:39:04 +0200
From: Solar Designer <solar@...nwall.com>
To: john-users@...ts.openwall.com
Subject: Re: Hexadecimal attack

On Mon, Sep 16, 2024 at 10:41:07PM +0530, Pentester LAB wrote:
> ```bash
> hashcat -m 11300 ab.hash -a 3 --hex-charset 6142
> ```
> 
> In this case, `61` is the hex value for `a` and `42` is the hex value for
> `B`, resulting in the password `aB`.

> My Bitcoin hash is:
> 
> ```
> $bitcoin$64$7e641e6315f8872eed57c344560a4f76f7d3bc0424ad7be89eada848431969ee$16$0a041920753002a2$50310$2$00$2$00
> ```

You can do it like this:

$ ./john -9='\x61\x42' -mask='?9?9' pw-bitcoin-test
Using default input encoding: UTF-8
Loaded 1 password hash (Bitcoin, Bitcoin Core [SHA512 AES 512/512 AVX512BW 8x])
Cost 1 (iteration count) is 50310 for all loaded hashes
Will run 4 OpenMP threads
Press 'q' or Ctrl-C to abort, 'h' for help, almost any other key for status
Warning: Only 4 candidates buffered, minimum 32 needed for performance.
aB               (?)     
1g 0:00:00:00  8.333g/s 33.33p/s 33.33c/s 33.33C/s aa..BB

or like this if you don't want to specify exact length:

$ ./john -9='\x61\x42' -mask='?9' -max-len=4 pw-bitcoin-test
Using default input encoding: UTF-8
Loaded 1 password hash (Bitcoin, Bitcoin Core [SHA512 AES 512/512 AVX512BW 8x])
Cost 1 (iteration count) is 50310 for all loaded hashes
Will run 4 OpenMP threads
Press 'q' or Ctrl-C to abort, 'h' for help, almost any other key for status
0g 0:00:00:00  (4) 0g/s 0p/s 0c/s 0C/s
Warning: Only 30 candidates buffered, minimum 32 needed for performance.
aB               (?)     
1g 0:00:00:00  (4) 10.00g/s 300.0p/s 300.0c/s 300.0C/s a..BBBB

You can also mix characters, character classes, character ranges, and
backslash-escaped character codes, including inside the mask itself:

$ ./john -mask='?l[\x01-\xff]' pw-bitcoin-test
Using default input encoding: UTF-8
Loaded 1 password hash (Bitcoin, Bitcoin Core [SHA512 AES 512/512 AVX512BW 8x])
Cost 1 (iteration count) is 50310 for all loaded hashes
Will run 4 OpenMP threads
Press 'q' or Ctrl-C to abort, 'h' for help, almost any other key for status
aB               (?)     
1g 0:00:00:01 DONE (2024-09-17 01:37) 0.8403g/s 1425p/s 1425c/s 1425C/s aA..rB

Alexander

Powered by blists - more mailing lists

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.