Security Basics mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Cracking simple password encryption

From: Alexander Klimov <alserkli () inbox ru>
Date: Thu, 22 Dec 2005 12:02:48 +0200 (IST)
On Wed, 21 Dec 2005, David Hogue wrote:

I am trying to figure out the password encryption scheme used by some
software and haven't had much luck yet.

password        crypted
a               aQ==
b               cg==
c               ew==
aa              aWo=
ab              aXE=
cc              e3g=
aaa             aWpq
aab             aWpx
abb             aXFx
bbb             cnFx


First of all you can RE your software. Alternatively, since this
`encryption' preserves prefix you can easily find password for any
given `crypted' by sequentially finding each next character starting
from the first.

Hint: base64 decoding
 a               i
 b               r
 c               {
 aa              ij
 ab              iq
 cc              {x
 aaa             ijj
 aab             ijq
 abb             iqq
 bbb             rqq

-- 
Regards,
ASK

---------------------------------------------------------------------------
EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The Norwich University program offers unparalleled Infosec management 
education and the case study affords you unmatched consulting experience. 
Tailor your education to your own professional goals with degree 
customizations including Emergency Management, Business Continuity Planning, 
Computer Emergency Response Teams, and Digital Investigations. 

http://www.msia.norwich.edu/secfocus
----------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: