Go4Expert (http://www.go4expert.com/)
-   Ethical hacking (http://www.go4expert.com/forums/ethical-hacking-forum/)
-   -   Cracking md5 hash (http://www.go4expert.com/forums/cracking-md5-hash-t20732/)

Toddie 22Jan2010 02:41

Cracking md5 hash
Here is a question that maybe you guys can help me with.

Suppose a user frequents 2 different websites.
Lets assume that user uses the same password for both sites.
lets also assume that both sites use an md5 hash to encrypt passwords.

one site is not vulnerable to sql injection
the other site is vulnerable to sql injection.

If you obtain the users md5 password hash on the vulnerable website, and you "crack" the hash, would the "crack" work on the other site that you were unable to sql inject?

shabbir 22Jan2010 08:23

Re: Cracking md5 hash
Moved your query into separate forum and coming to your question.

It should work.

indiansword 23Jan2010 13:58

Re: Cracking md5 hash
yes it shdu work as plan text passwords are same AS LONG AS both encryptions are md5.

Deadly Ghos7 24Jan2010 08:41

Re: Cracking md5 hash
yeah because for the same string, its md5 hash will always be the same so it will work definitely.

SpOonWiZaRd 25Jan2010 17:14

Re: Cracking md5 hash
Just make sure its the same case...

All times are GMT +5.5. The time now is 08:52.