Re: Sybase passwords hashes

[Joxean Koret <joxeankoret () yahoo es>]

Hi,

I wrote in the past a simple python class to do what you say. Attached
goes. 

It's based in a paper written by David Litchfield which you can view
here:

http://www.nextgenss.com/papers/cracking-sql-passwords.pdf

---
Joxean Koret


On mié, 2007-01-17 at 08:15 -0500, Utmost Bastard wrote:
> I thought the encryption method is selectable although I could be wrong. 
> Default maybe AES?
>
> Anyways did you try dumping hash format into John to see if it can identify 
> the type? I would guess to say it is salted also.
>
> UB
>
>
>
> ----- Original Message ----- 
> From: "mugutu sumulunu" <sumulunu () gmail com>
> To: <pen-test () securityfocus com>
> Sent: Tuesday, January 16, 2007 5:11 AM
> Subject: Sybase passwords hashes
>
>
> > Hello all,
> >
> > Is there any method to crack a Sybase ASE hash?
> >
> > Like this one for "sa" user:
> > 0x3005c90e5dce3f2cd5f840ba479fbdb20304949c681df41d5da9ebfd2d82
> >
> > Thank you!!
> >
> >
> > Mugutu Sumulunu
> >
> > ------------------------------------------------------------------------
> > This List Sponsored by: Cenzic
> >
> > Need to secure your web apps?
> > Cenzic Hailstorm finds vulnerabilities fast.
> > Click the link to buy it, try it or download Hailstorm for FREE.
> >
> > http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW
> > ------------------------------------------------------------------------
>
>
> ------------------------------------------------------------------------
> This List Sponsored by: Cenzic
>
> Need to secure your web apps?
> Cenzic Hailstorm finds vulnerabilities fast.
> Click the link to buy it, try it or download Hailstorm for FREE.
>
> http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW
> ------------------------------------------------------------------------

Attachment: test.py
Description:

Attachment: signature.asc
Description: This is a digitally signed message part