1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Cracking md5 hash

Discussion in 'Ethical hacking' started by Toddie, Jan 21, 2010.

  1. Toddie

    Toddie New Member

    Joined:
    Jan 9, 2010
    Messages:
    52
    Likes Received:
    2
    Trophy Points:
    0
    Here is a question that maybe you guys can help me with.

    Suppose a user frequents 2 different websites.
    Lets assume that user uses the same password for both sites.
    lets also assume that both sites use an md5 hash to encrypt passwords.

    one site is not vulnerable to sql injection
    the other site is vulnerable to sql injection.

    If you obtain the users md5 password hash on the vulnerable website, and you "crack" the hash, would the "crack" work on the other site that you were unable to sql inject?
     
  2. shabbir

    shabbir Administrator Staff Member

    Joined:
    Jul 12, 2004
    Messages:
    15,292
    Likes Received:
    365
    Trophy Points:
    83
    Moved your query into separate forum and coming to your question.

    It should work.
     
  3. indiansword

    indiansword Security Expert

    Joined:
    Oct 19, 2008
    Messages:
    496
    Likes Received:
    36
    Trophy Points:
    0
    Occupation:
    Operation Planner for 3 Australia
    Home Page:
    yes it shdu work as plan text passwords are same AS LONG AS both encryptions are md5.
     
  4. Deadly Ghos7

    Deadly Ghos7 New Member

    Joined:
    Dec 19, 2009
    Messages:
    55
    Likes Received:
    2
    Trophy Points:
    0
    Occupation:
    Student
    Location:
    Earth
    Home Page:
    yeah because for the same string, its md5 hash will always be the same so it will work definitely.
     
  5. SpOonWiZaRd

    SpOonWiZaRd Know what you can do.

    Joined:
    May 30, 2007
    Messages:
    747
    Likes Received:
    8
    Trophy Points:
    0
    Occupation:
    Network Engineer/Programmer
    Location:
    South Africa
    Just make sure its the same case...
     

Share This Page