EvilZone

Hacking and Security => Hacking and Security => : hppd March 05, 2014, 06:35:04 PM

: How to identify custom hashes?
: hppd March 05, 2014, 06:35:04 PM

Okay so I have this hash, I tried a bunch of hash identifiers and they can't see wich one it is so I am assuming it is a custom hash.
I don't really need the result of the hash, I just got fascinated by how one would be able to crack an undefined hash. Anybody have some information about that? I'm sure some of you have done it before, where did you start?

BTW this is the hash (maybe you recognize it):
c249780af30337ab50fa5d018

: Re: How to identify custom hashes?
: Axon March 05, 2014, 07:23:34 PM

Have you tried using this tool?
https://code.google.com/p/hash-identifier/

: Re: How to identify custom hashes?
: Psycho_Coder March 05, 2014, 09:09:29 PM

I guess no body saw this : https://evilzone.org/scripting-languages/(python)-hash-algorithm-identifier-v3-3/ (https://evilzone.org/scripting-languages/(python)-hash-algorithm-identifier-v3-3/)

Its better than the one on the google code and alos supports more hashes and some of which are not there even :P and have been added newly

I have made an example site with php as well.(I am a noob in php)


http://psychocoder.com.nu/hashfinder.php (http://psychocoder.com.nu/hashfinder.php)

BTW: Coming back to the question I am not sure if the hash is correct as the number of characters is 25 and other characteristics include hex characters and numbers. Its very much possible that they are not hashes but are encryptions with another layer of other encodings etc etc.

: Re: How to identify custom hashes?
: hppd March 05, 2014, 09:37:12 PM

Yeah psycho I've tried your tool before I made this thread :P Also tried the neither could identify it, so I'm guessing it is either a really exotic hash or a custom made

: Re: How to identify custom hashes?
: Psycho_Coder March 05, 2014, 09:51:40 PM

: hppd  March 05, 2014, 09:37:12 PM

Yeah psycho I've tried your tool before I made this thread :P Also tried the neither could identify it, so I'm guessing it is either a really exotic hash or a custom made

I think it isn't a hash at all and even if it is then its custom made or it has been tweaked.


Have a look here :-


https://hashcat.net/wiki/doku.php?id=example_hashes (https://hashcat.net/wiki/doku.php?id=example_hashes)

: Re: How to identify custom hashes?
: hppd March 05, 2014, 10:15:01 PM

It must be some kind of encryption though, I found it in a custom made cms when I was practicing to bypass mod_Security  :P ..

: Re: How to identify custom hashes?
: Psycho_Coder March 06, 2014, 04:48:09 AM

: hppd  March 05, 2014, 10:15:01 PM

It must be some kind of encryption though, I found it in a custom made cms when I was practicing to bypass mod_Security  :P ..

I said that earlier as well. Most hashes have a characteristics feature to almost uniquely identify them.