cyb ndy

Crack the hash - TryHackMe

cracking hashes challenges

Description

Basically cracking the hashes provided by tryhackme

Task 1: Level 1

Answer the questions below

(repeat the process of step 1 for all the questions except for number 3)

1. 48bb6e862e54f2a795ffc4e541caed4d using [crackstation.net] we find the hash is md5 and get the result below

        easy

2. CBFDAC6008F9CAB4083784CBD1874F76618D2A97 repeat the same process

        password123

3. $2y$12$Dwt1BZj6pcyc3Dy1FWZ5ieeUznr71EeNkJkUlypTsgbX1H68wsRom We will use hashcat, it is pre-installed on kali linux.

create a file called hash and paste the hashed text in it Identify the hash type You can first try to identify the hash type with this online resource.

Identify hash type using cmd

        hashid -m hash

results

        --File 'hash'--
Analyzing '$2y$12$Dwt1BZj6pcyc3Dy1FWZ5ieeUznr71EeNkJkUlypTsgbX1H68wsRom'
[+] Blowfish(OpenBSD) [Hashcat Mode: 3200]
[+] Woltlab Burning Board 4.x
[+] bcrypt [Hashcat Mode: 3200]
--End of file 't1_4'--

Crack

        hashcat -m 3200 -a 0 hash /usr/share/wordlists/rockyou.txt

-m for to hash type and -a for the attack mode. Go to here and here for more information

result

        bleh
  1. Try it on your own

Task 2: Level 2

Instruction

This task increases the difficulty. All of the answers will be in the classic rock you password list.

You might have to start using hashcat here and not online tools. It might also be handy to look at some example hashes on hashcats page.

Answer the questions below

Hash: F09EDCB1FCEFC6DFB23DC3505A882655FF77375ED8AA2D1C13F640FCCC2D0C85Answer: We want to use john the ripper this time around.

  • Identify hash type: Mostly, you will get a lot of possible options for the result. It is at your discretion to choose which one to start with and try cracking the hashed text. You can also try hash-identifier
        hashid -j hash1

Our hash is in file hash1. Notice we -j instead of -m, this is so we get the format specified for john the ripper. if you use -m, you get the format in hashcat mode. Ok then,

  • Crack it
        john --wordlist=/usr/share/wordlists/rockyou.txt --format=Raw-SHA256

Final results

        paule

Hash: 1DFECA0C002AE40B8619ECF94819CC1B Try this on your own with the above steps. Expected result

        n63umy8lkf4i

Hash: $6$aReallyHardSalt$6WKUTqzq.UQQmrm0p/T7MPpMbGNnzXPMAXi4bJMl9be.cfi3/qxIf.hsGpS41BqMhSrHVXgMpdjS6xeKZAs02. salt: Salt: aReallyHardSalt

Answer:

  • Identify hash type: We already know salt was used to make the hash more difficult to crack. We will be using hashcat for this question Running hashid, we already have an idea that it is sha512crypt.
        hashcat -m 1800 -a 0 hash3 /usr/share/wordlists/rockyou.txt
Expected result
        waka99

Try Hash: e5d8870e5bdd26602cab8dbe07a942c8669e56d6

Salt: tryhackme

Expected result:

        481616481616
TryHackMeLinux Privilege Escalation
cyb ndy
© 2023 Designed & Developed by Cybandy