[phpBB Debug] PHP Warning: in file [ROOT]/phpbb/session.php on line 580: sizeof(): Parameter must be an array or an object that implements Countable
[phpBB Debug] PHP Warning: in file [ROOT]/phpbb/session.php on line 636: sizeof(): Parameter must be an array or an object that implements Countable
3.14.by forum • double/triple md5
Page 1 of 1

double/triple md5

Posted: Sun Jan 10, 2010 4:51 pm
by exoomer
Do you shedule to add algorithmes like double or triple md5 [md5(md5(password))/md5(md5(md5(password)))] ? Because your program is great, but this option would be great :)

Re: double/triple md5

Posted: Sun Jan 10, 2010 8:26 pm
by Sc00bz
Just wondering who uses triple MD5?

Re: double/triple md5

Posted: Sun Jan 10, 2010 9:43 pm
by exoomer
I know some guys that are using triple md5 without salt :)

Re: double/triple md5

Posted: Mon Jan 11, 2010 7:50 am
by LordMike
lol :P

Anyhow. It will prob. be an option of the salty cracker. Else you can use
the Hashcat 0.31. Which IIRC, can do just that.

Re: double/triple md5

Posted: Mon Jan 11, 2010 2:39 pm
by exoomer
Thx LordMike, that program is ideal :)

//edit: the only disadvantage of this prog. is the speed, in brute force md5 the speed is only abour 13/14M/s, double md5 4M/s, isn't it a bit slow? BarsWF is running 60M/s only on my processor, another 250M/s on the GPU.

Re: double/triple md5

Posted: Tue Jan 12, 2010 7:34 pm
by schwarzwaldhacker
Just wondering who uses triple MD5?

Code: Select all

	if ($_SESSION['konto']==1)
	{
	   $_SESSION['passw']=md5($_SESSION['passw']);
	   $_SESSION['passw']=md5($_SESSION['passw']);
	   $_SESSION['passw']=md5($_SESSION['passw']);
	   $req="select * from benutzer where pseudo='$_SESSION[pseudo]' and passw='$_SESSION[passw]'"
Yes, triple MD5 is used? I guess people using "pure MD5" don't know really what's going on around them? :D

Re: double/triple md5

Posted: Tue Jan 12, 2010 10:07 pm
by Sc00bz
People that use single, double, triple, or more without a unique salt per hash don't know what is going on around them.

Re: double/triple md5

Posted: Wed Jan 13, 2010 7:27 am
by schwarzwaldhacker
People that use single, double, triple, or more without a unique salt per hash don't know what is going on around them.
That is correct, of course! I only thought about the Online-MD5-Databases.

Re: double/triple md5

Posted: Fri Jan 15, 2010 11:01 am
by LordMike
Sc00bz wrote:People that use single, double, triple, or more without a unique salt per hash don't know what is going on around them.
Or.. They rely on security by secrecy.