Mike's Security Cabinet: AppSec Research Challenge 9: Crack 'Em Hashes

Monday, February 22, 2010

AppSec Research Challenge 9: Crack 'Em Hashes

OWASP just posted its challenge 9:

http://www.owasp.org/index.php/OWASP_AppSec_Research_2010_-_Stockholm,_Sweden#tab=Challenges

They gave a list of Hash values:

LM(pwd1) 0C04DACA901299DBAAD3B435B51404EE
MD2(pwd2 + pwd1) 16189F5462BF906E9D88CF6F152DE86F
MD4(pwd3 + pwd2) FA8F46A6D347087D6980C3FA77DD4DE9
MD5(pwd4 + pwd3) 425B33D6F60394C897B8413B5C185845
RIPEMD160(pwd5 + pwd4) 35F34671D30472D403937820DCABC1C78C837071
SHA1(pwd6 + pwd5) AE81A30510B2931921934218636B26A803330EB1
SHA256(pwd7 + pwd6) B2FF0269E927C6559804A37590A0688C45DF143F85CEE0E3F239F846B65C9644
GOST3411(pwd8 + pwd7) 16CC9F1FF65688E040F5ADA82A41A258FF948769CDA4C4A17D85228A6F358971

Step 1, use Cain to crack LM(pwd1),

pwd1 = OWASP

and that's 1 point

Step 2,

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)