[phpBB Debug] PHP Warning: in file [ROOT]/phpbb/session.php on line 580: sizeof(): Parameter must be an array or an object that implements Countable
[phpBB Debug] PHP Warning: in file [ROOT]/phpbb/session.php on line 636: sizeof(): Parameter must be an array or an object that implements Countable
3.14.by forum • Rquest:Radmin 2.x algorithm
Page 1 of 1

Rquest:Radmin 2.x algorithm

Posted: Sun Jan 24, 2010 5:17 am
by sxjini
hi
I need to crack the password of Radmin 2.x
I had know the algorithm of Radmin 2.x is:
In the RAdmin v2.x algorithm, the password is expanded with zeros to 100 characters, and those 100 bytes are hashed by the MD5 algorithm.
I.e. for the password "123", it hashes a string that consists of the following 100 bytes
(in the HEX format):
31 32 33 00 00 00 00 ...
can you help me?
the hash example:
8435c7c79df403cd50194a70907242b4:password
62e4d682b4eb177fa4a275c8144719df:xxxxxxxx
afbf3235fd6ff528f1d1e59b9db6353c:12344321
8a1a96847b6b6557ba453a4a6a73af34:5risc0o1
eba72554a1cf01216eaddc0f98ac857b:!@#$%^&*
6d0bb00954ceb7fbee436bb55a8397a9:<Empty password>
8090b177e3381be98a71874946523dad:yjgfcfhfy
4429b4c787f7130f4ede61bc90a96efc:qazwsxedc
9d34d32ca379f451ab2f19263df49604:145236789
c459370cf14b8280722c086824ef9bf9:1q2w3e4r5t
8435c7c79df403cd50194a70907242b4:password
6932a40fb4ecfabba54ae5425a073ce4:6101060006
BTW in radmin,min length of password is 8 char

Re: Rquest:Radmin 2.x algorithm

Posted: Sun Jan 24, 2010 10:46 am
by HI_VOL
Hm, you can use the same algo for Radmin like MD5...

The only thing you have to do is to fill your byte-array like this:

{65,65,65,65,65,65,65,65,48,48,48,48,48,48,48,48,48,48,48,48,[.....]}

65=A
48=0
Im thinking in Dez (like my c#-md5algo).

Re: Rquest:Radmin 2.x algorithm

Posted: Sun Jan 24, 2010 11:25 am
by LordMike
This makes for an interesting salty-cracker addition :P
Bars.. ? :P

md5($pass.$100-null-bytes-minus-length($pass))?.. :P

Re: Rquest:Radmin 2.x algorithm

Posted: Sun Jan 24, 2010 9:10 pm
by Sc00bz
Nice this is a perfect example why you should never come up with your own algorithm that you think makes it hard to crack. This is equivalent to normal MD5 for cracking passwords. You will actually get slightly higher speeds with this than MD5 barswf. Since you only need to do one MD5 with no "0x80" appended and no size. The only problem I see is that passwords are required to be at least 8 characters.

You have to do one extra step when you add a hash to be cracked but it only takes one MD5 to do it. Also you can crack these in batches like with Cryptohaze's Multiforcer. Or single hash cracking with 1 full round, 3 and 2/2 steps reversed (well plus the one full MD5 reversed).

Re: Rquest:Radmin 2.x algorithm

Posted: Mon Jan 25, 2010 2:06 am
by sxjini
reply:HI_VOL and Sc00bz
I can't understand your solution。 I think there need a custom BarWF。because I know the hash but don't know the password。
the password is expanded with zeros to 100 characters