New Mysql Cracker

[schwarzwaldhacker]

Mon Aug 02, 2010: The NEW SchwarzwaldMYSQL Version 1.4444 is waiting for you!!!

We are all anxiously waiting for new developments on this site! So I thought that it would be the right moment to calm people down a little bit, by releasing my new Mysql-Cracker!

http://s.schwarzwaldhacker.rbcmail.ru/s ... MYSQL.html

(You can find detailed DOWNLOAD INSTRUCTIONS there => http://3.14.by/forum/viewtopic.php?f=8&t=1062#p7322)

It is up to 50% faster than nvCUDA_mysql.exe. But with a much larger range!

Hurry up! Because my website has probably some bandwidth limit or something!

[schwarzwaldhacker]

First of all: Thanks a lot for your reply!

I just checked the code and it turns out that at line 791, my code is identical with the code from nvCUDA_mysql.cu:

Code: Select all

CUDA_SAFE_CALL(cudaMemcpyToSymbol(compd, comp, sizeof(DWORD) * Cdata ));

However, this is related to the number of passwords:

Code: Select all

#define MAXpasswords 199

And in the forums.nvidia.com, they mention the same problem, linked to "max. amount of memory":

http://forums.nvidia.com/lofiversion/in ... 55696.html

Therefore:
How many passwords did you test?
Were they in this "format":123456789012:1977a77e23068d69

PS:

I liked:

Cuda error in file 'c:/Users/der sohn/AppData/Local/NVIDIA Corporation/NVIDIA CUDA SDK/projects/bandwidthTest/bandwidthTest.cu' in line 791

It was definitely not my purpose to publish this information!

[BarsMonster]

Hmm, noob question, how can I get MySQL hashes from a working MySQL server?

[schwarzwaldhacker]

they were in this format:


1eca5f895f97b1c3
0322320714aafdd0
239c96355f9efa98
64e243777f4f5d5a
6e89c5db67fbb06f
52bf68273de8bb23

Ok, then just put "test:" or something in front of them, like:

test1:1eca5f895f97b1c3
test2:0322320714aafdd0
etc.

In a .txt file - 42 lines overall.

42 should be OK? I think I tried like a 100 without too many difficulties. I would however start with "numeric", then "loweralpha" before I would start with a more complicated charset. The problem here, is that the hashes are stored in the device constant memory. And this is limited to 64 KB. Furthermore, other arrays etc. are limited because of memory. Therefore, if you put too many into them, you will get strange results. For instance, I had more than 600 interesting hashes. I started with "loweralpha". But it then switched into "loweralpha-numeric" or something. Probably, memory was overwritten, etc.. I am working on this problem!

Then, again, THANKS FOR YOUR REPLY!

It is not my first "hacking tool". But it is the first time that I publish one. And the very first tool I wrote in cuda. As a result, there might in the beginning be quite a few bugs in there. Therefore, please! Do not hesitate to mention problems!

[schwarzwaldhacker]

Hmm, noob question, how can I get MySQL hashes from a working MySQL server?

How do you want to get MySQL hashes from a NOT working MySQL server???

I would do something like this.

Code: Select all

schwarzwaldhacker@linux:~> mysql -u root -p
Enter password:
Welcome to the MySQL monitor.  Commands end with ; or \g.
Your MySQL connection id is 1
Server version: 9.9.99-community MySQL Community Server (GPL)

Type 'help;' or '\h' for help. Type '\c' to clear the buffer.

mysql> use interestingdatabases
Reading table information for completion of table and column names
You can turn off this feature to get a quicker startup with -A

Database changed
mysql> show columns from user;
+-----------------------+-----------------------------------+------+-----+---------+-------+
| Field                 | Type                              | Null | Key | Default | Extra |
+-----------------------+-----------------------------------+------+-----+---------+-------+
| Host                  | varchar(60)                       | NO   | PRI |         |       |
| User                  | varchar(16)                       | NO   | PRI |         |       |
| Password              | varchar(41)                       | NO   |     |         |       |
| Select_priv           | enum('N','Y')                     | NO   |     | N       |       |
| Insert_priv           | enum('N','Y')                     | NO   |     | N       |       |
| Update_priv           | enum('N','Y')                     | NO   |     | N       |       |
| Delete_priv           | enum('N','Y')                     | NO   |     | N       |       |
| Create_priv           | enum('N','Y')                     | NO   |     | N       |       |
| Drop_priv             | enum('N','Y')                     | NO   |     | N       |       |
| Reload_priv           | enum('N','Y')                     | NO   |     | N       |       |
| Shutdown_priv         | enum('N','Y')                     | NO   |     | N       |       |
| Process_priv          | enum('N','Y')                     | NO   |     | N       |       |
| File_priv             | enum('N','Y')                     | NO   |     | N       |       |
| Grant_priv            | enum('N','Y')                     | NO   |     | N       |       |
| References_priv       | enum('N','Y')                     | NO   |     | N       |       |
| Index_priv            | enum('N','Y')                     | NO   |     | N       |       |
| Alter_priv            | enum('N','Y')                     | NO   |     | N       |       |
| Show_db_priv          | enum('N','Y')                     | NO   |     | N       |       |
| Super_priv            | enum('N','Y')                     | NO   |     | N       |       |
| Create_tmp_table_priv | enum('N','Y')                     | NO   |     | N       |       |
| Lock_tables_priv      | enum('N','Y')                     | NO   |     | N       |       |
| Execute_priv          | enum('N','Y')                     | NO   |     | N       |       |
| Repl_slave_priv       | enum('N','Y')                     | NO   |     | N       |       |
| Repl_client_priv      | enum('N','Y')                     | NO   |     | N       |       |
| ssl_type              | enum('','ANY','X509','SPECIFIED') | NO   |     |         |       |
| ssl_cipher            | blob                              | NO   |     | NULL    |       |
| x509_issuer           | blob                              | NO   |     | NULL    |       |
| x509_subject          | blob                              | NO   |     | NULL    |       |
| max_questions         | int(11) unsigned                  | NO   |     | 0       |       |
| max_updates           | int(11) unsigned                  | NO   |     | 0       |       |
| max_connections       | int(11) unsigned                  | NO   |     | 0       |       |
+-----------------------+-----------------------------------+------+-----+---------+-------+
31 rows in set (0.02 sec)

mysql> select user, Password from user;
+--------------+------------------+
| user         | Password         |
+--------------+------------------+
| root         | 

I will stop here!

[LordMike]

I can't even run the app...

How do I get past the license thing?... I've added the "l=I_read_and_understood_the_licence"..

It asks me for y/YES. I write:
"y" - "Sorry short version!"
"YES" - "Bye!Bye!"...

[schwarzwaldhacker]

Again, thanks for your comments!

"YES" - "Bye!Bye!"...

Please use a small "y"! Because the "ultra-secret" source code to check your "y" is as follows:

Code: Select all

cVersuch=getchar();
if (cVersuch!=121)
{printf("\n");
printf("Bye!Bye!");
exit(0);}

It asks me for y/YES. I write:
"y" - "Sorry short version!"

This could be caused by the "e"-option being bigger than 16, for instance "e=20". The code is as follows:

Code: Select all

if (size_End>17) { printf("Sorry short version.\n");  	return(0);}

(I didn't see much sense in making it bigger as 16, because even with multiple cards, I doubt that you can reach 14-15 with "loweralpha". And it is of course a good idea to start with something like "2004aaaaaaaaaaaa". But if you reach size 16, I would recommend you to find another way to crack that password or to try another password first=> loweralpha 12 takes me 19 hours on a GTX+9800. That means that even a system going 10 times faster, will not be able to reach 14 characters, 1.9 h* 26*26=1284 hours=53 days= your system is on fire)

Still don't work - tried with login:pass with and w/o newline in the end. The same error

Budden, I am very sorry for you! I really had hoped that you wouldn't have had problems again!

What I can assure you, is that it worked for me and for at least another person without any difficulties. Therefore please try the following line and lets hope that it will work for you as well:

"schwarzwaldMYSQL32.exe s=0 e=9 c=loweralpha f=testpasswordsSMALL.txt"

("testpasswordsSMALL.txt" is in the zip!)

If that does not work, please try the same with Xsergs file(I am uploading it with this reply).

PS That key for license agreement is very long & inconvenient - it ould be better to ask it on only the 1st start - and then create some .txt file with word "YES" and if program sees it - it doesn't ask for that key.

Or better without it at all, but if you need it - see earlier.

Right now I am working on an even more powerful, faster version. Personally, I found dozens of system with this hash type. Very often systems which were barely used and where passwords were like "root", "admin" and so on. But then I also got for instance a government website concerning aids and other health issues. Therefore, because that tool is very powerful and because it might allow to crack hashes which were safe before, it is very important to remind people that this is not a game but something real. And that it might have very serious consequences(Maybe we will meet one day. And then I doubt that I would not be willing to give you a "bash version"! But I can't do that now, sorry!).

[schwarzwaldhacker]

Budden, your problem could indeed be linked to the 2.3 drivers.

I therefore recommend you to format your disks and reinstall 2.2 drivers...

More seriously, I think that the problem could be linked to memory. Because my version uses "pinned memory", special cacheable memory allocated on your computer, if your cuda version is above 2.2. This speeds up everything, though it was not the only improvement. The problem however is, "Page-locked memory is a scarce resource, so allocations in page-locked memory will start failing long before allocations in pageable memory". And version 2.3 also has a lot of other memory problems, with textures and so on, leading to "unspecified launch failures".

I therefore decided to create a special "budden"-version. It should not fail because of memory, as it uses even less memory than Xserg's Mysql Cracker. But it is a little bit slower than the version working on 2.2 drivers.

[issue]

Not having the 10 characters limit is a NICE thing ! Thanks for your work !

[schwarzwaldhacker]

Some people are complaining, that it is difficult to download "Schwarzwaldhacker". I therefore decided to publish these "download instructions":

On http://www.schwarzwald.h1.ru/schwarzwaldMYSQL.html where I will announce the latest versions, you will find a link like this one:

http://narod.ru/disk/13232525000/schwar ... 1.zip.html (Link of the 1st Version)

It will lead you to a page, which looks like this(Click on the following link to see the picture):

http://www.schwarzwald.h1.ru/dowonloadS ... HACKER.png

There it's very easy, just type the number you can see in the box above the green Russian submit button. Then press enter or the green submit button.

In the example, the number was "721199".

You will then reach a page, where you can see this link again(If you download the 1st version=> http://www.schwarzwald.h1.ru/dowonloadS ... ACKER2.png):

"http://narod.ru/disk/13232525000/schwar ... 1.zip.html"

BEFORE you click on this link, uncheck the following option:



Then click on this link(For instance "http://narod.ru/disk/13232525000/schwar ... 1.zip.html") and the download should start!

Unlike Germany for instance, Russia is a very tolerant&liberal country! Where you can do a lot of things, like publishing software, developing new software and so on. However, I think that the "http://narod.ru" is quite safe and that it is very unlikely that you will get a virus by just downloading the file.

[schwarzwaldhacker]

New schwarzwaldMYSQL32 Version 1.1 Released!

http://s-schwarzwaldhacker.rbcmail.ru/s ... MYSQL.html

Many new features and again EVEN MORE SPEED!!!

[issue]

New schwarzwaldMYSQL32 Version 1.1 Released!

http://s-schwarzwaldhacker.rbcmail.ru/s ... MYSQL.html

Many new features and again EVEN MORE SPEED!!!

Thanks so much. AMAZING !!!

[schwarzwaldhacker]

Issue discovered a very serious bug. THANKS issue!!!

This bug has already been removed. And I will release a bug-free version later today.

Sorry!

[schwarzwaldhacker]

Issue discovered that "schwarzwaldMYSQL32" didn't work if you use a higher number of blocks. Unfortunately, he was right! but thanks! And PLEASE contact me if you find further bugs!

So this bug has now been corrected. I also added the "charset.txt"-file, which I also had forgotten. But I removed the "g=1" option. The limited number of passwords you can test is a pain(On a GTX+ 9800, 16 Blocks, "loweralpha-numeric-space"=around 200) . But I will tackle this problem later, after further speed improvements.

The next release could be in the coming week. As I already reduced the transfer from and to the device to 2*8 Bytes. And I now intend to do almost all the calculations on the device, in order to gain even more speed.

You will find it there:

http://s-schwarzwaldhacker.rbcmail.ru/s ... MYSQL.html

And detailed download-instructions are available there:

http://3.14.by/forum/viewtopic.php?f=8&t=1062#p7322

[schwarzwaldhacker]

Issue send me a PM about a bug in the "restart-function"! He was right! Actually there were two bugs. And one of them was related to the old size-limit of ten:

Code: Select all

	int size_Start=4;//Size 1-3 is checked on the CPU
	int size_End=10;

and later

Code: Select all

	if ((Rest!=0)&&(Rest<size_End))
	{
     printf( "\nRestart from %s \n", (char *)&String[0]);

I hope that I fixed it!

I also changed the "Average Speed Counter". If you test like 10 passwords for let's say 1-10 "loweralpha", best with b>192, you will now get real hight numbers!

If you find any other bugs, PLEASE contact me as soon as you can. But I hope the next time I will post on this forum, it will be about the next even faster release.

[blazer]

any chance of uploading to rapidshare.com ? or megaupload.com

i can't download from your site i'm getting

Невозможно загружать несколько файлов одновременно.

i have no idea what that means.

[schwarzwaldhacker]

1st, thanks for wanting to try my software!

"Невозможно загружать несколько файлов одновременно" = "Unable to upload multiple files at once"

=> Please check the download instructions: http://3.14.by/forum/viewtopic.php?f=8&t=1062#p7322

I won't upload anything to rapidshare.com or megaupload.com. Because all of this is "Russian". And something inside me tells me that it is better to leave it in Russia...

Right now, Beta-testing for a new version is underway! As many bugs were found in the previous versions(Including Xserg's), I recommend you not to download one of the old versions. But to wait a few more days for the next release.

[blazer]

yeah, i understand.

Let me know when your new ver comes out.

It's just weird because i'm pretty sure i followed the instructions, it made me download some firefox plugin, after typing the catpcha then when I click on the link it gives just shows the page with the message which i posted earlier. O well thx the reply, and looking forward to your next release.

[schwarzwaldhacker]

Did you get to that link?

http://narod.ru/disk/13825913000/schwar ... 2.zip.html

it made me download some firefox plugin

Do you use a special language, like Arabic or Chinese? And is your system safe, do you for instance have to download a lot of firefox plugins?

[blazer]

yay it worked this time.

Umm i have no idea what the plugin was for, it was all in russian the icon was a martini glass with something on the top.

thx

[schwarzwaldhacker]

Umm i have no idea what the plugin was for, it was all in russian the icon was a martini glass with something on the top.

In the Internet, be always careful not to click on women! This can always have very dangerous results!

[LordMike]

lol

[schwarzwaldhacker]

Many bugs were removed, new features were added and even slightly more speed: YOU HAVE TO HAVE IT!

http://s-schwarzwaldhacker.rbcmail.ru/s ... MYSQL.html

[BarsMonster]

Many bugs were removed, new features were added and even slightly more speed: YOU HAVE TO HAVE IT!

http://s-schwarzwaldhacker.rbcmail.ru/s ... MYSQL.html

Dude, you scare me
When you are going to apply for Russian citizenship

[schwarzwaldhacker]

Я русский человек.