Hashing - Crypto 101

Task 1 Key Terms

Before we start, we need to get some jargon out of the way. Read these, and take in as much as you can. We'll expand on some of them later in the room.

Plaintext - Data before encryption or hashing, often text but not always as it could be a photograph or other file instead.

Encoding - This is NOT a form of encryption, just a form of data representation like base64 or hexadecimal. Immediately reversible.

Hash - A hash is the output of a hash function. Hashing can also be used as a verb, "to hash", meaning to produce the hash value of some data.

Brute force - Attacking cryptography by trying every different password or every different key

Cryptanalysis - Attacking cryptography by finding a weakness in the underlying maths This room will likely involve some research. Get good at using search engines, it's crucial to infosec.

Read the words, and understand the meanings! Is base64 encryption or encoding?

encoding

Task 2 What is a hash function?

What is the output size in bytes of the MD5 hash function?

128 bit= 16 bytes

16

Can you avoid hash collisions? (Yea/Nay)

Nay

If you have an 8 bit hash output, how many possible hashes are there?

2⁸=256

256

Task 3 Uses for hashing

Crack the hash "d0199f51d2728db6011945145a1b607a" using the rainbow table manually.

basketball

Crack the hash "5b31f93c09ad1d065c0491b764d04933" using online tools

Ultimate Hashing and Anonymity toolkitMD5Hashing

tryhackme

Should you encrypt passwords? Yea/Nay

Nay

Task 4 Recognising password hashes

Automated hash recognition tools such as https://pypi.org/project/hashID/

A great place to find more hash formats and password prefixes is the hashcat example page, available here: https://hashcat.net/wiki/doku.php?id=example_hashes.

How many rounds does sha512crypt ($6$) use by default?

5000

What's the hashcat example hash (from the website) for Citrix Netscaler hashes?

1765058016a22f1b4e076dccd1c3df4e8e5c0839ccded98ea

How long is a Windows NTLM hash, in characters?

32

Task 5 Password Cracking

Crack this hash: $2a$06$7yoU3Ng8dHTXphAg913cyO6Bjs3K5lBnwq5FJyA6d01pMSrddr1ZG

Hash Type Identifier - Identify unknown hashes

hashcat -m 3200 5_1.txt /opt/rockyou/rockyou.txt --force

85208520

Crack this hash: 9eb7ee7f551d2f0ac684981bd1f1e2fa4a37590199636753efe614d4db30e8e1

Hash Type Identifier - Identify unknown hashes

Hash, hashing, and encryption toolkitMD5Hashing

hashcat -m 1400 5_2.txt /opt/rockyou/rockyou.txt --force

halloween

Crack this hash: $6$GQXVvW4EuM$ehD6jWiMsfNorxy5SINsgdlxmAEl3.yif0/c3NqzGLa0P.S7KRDYjycw5bnYkF5ZtB8wQy8KnskuWQS3Yr1wQ0

hashcat -m 1800 5_3.txt /opt/rockyou/rockyou.txt --force

spaceman

Bored of this yet? Crack this hash: b6b0d451bbf6fed658659a9e7e5598fe

Hash Type Identifier - Identify unknown hashes

funforyou

Task 6 Hashing for integrity checking

What's the SHA1 sum for the amd64 Kali 2019.4 ISO? http://old.kali.org/kali-images/kali-2019.4/

186c5227e24ceb60deb711f1bdc34ad9f4718ff9

What's the hashcat mode number for HMAC-SHA512 (key = $pass)?

example_hashes [hashcat wiki]

1750