Posts: 2
Threads: 1
Joined: Aug 2024
Just a general Technical question so i can more understand this stuff, is it possible to decrypt some hashed stuff or what is needed for that? Or are these databases stored in plain text by restarted admins?
Im not a skid or a leecher just want to know more about the stuff and i think this is the right forum to ask.
Posts: 137
Threads: 9
Joined: Jun 2024
(Aug 06, 2024, 08:57 PM)Randomlol Wrote: Just a general Technical question so i can more understand this stuff, is it possible to decrypt some hashed stuff or what is needed for that? Or are these databases stored in plain text by restarted admins?
Im not a skid or a leecher just want to know more about the stuff and i think this is the right forum to ask.
Identify the data encryption (often sha1 or md5 or bcrypt) and then enter it on this website: https://md5decrypt.net this is the easiest way if you don't want to learn how to decrypt, not all data will be recognized though!
Posts: 200
Threads: 13
Joined: Jan 2024
Personally, I use hashid to guess the encryption method for a password. Sometimes it recognized, sometimes nope (generally because developers use custom function to hash). After the encryption method detected, you have to use a brute-force attack with dictionaries to test passwords. Maybe try the hash on Crackstation or Weakpass first, possibility to save time after a brute-force.
This is the only method you can crack password.
Posts: 137
Threads: 9
Joined: Jun 2024
(Aug 06, 2024, 09:16 PM)cod3x Wrote: Personally, I use hashid to guess the encryption method for a password. Sometimes it recognized, sometimes nope (generally because developers use custom function to hash). After the encryption method detected, you have to use a brute-force attack with dictionaries to test passwords. Maybe try the hash on Crackstation or Weakpass first, possibility to save time after a brute-force.
This is the only method you can crack password.
thank u for providing further advice, not all encryption is possible to decrypt? if I'm not talking nonsense (I'm not at all specialized in the subject)
Posts: 200
Threads: 13
Joined: Jan 2024
Aug 06, 2024, 09:46 PM
(This post was last modified: Aug 06, 2024, 09:47 PM by cod3x.)
(Aug 06, 2024, 09:35 PM)Elgrandetiti777 Wrote: (Aug 06, 2024, 09:16 PM)cod3x Wrote: Personally, I use hashid to guess the encryption method for a password. Sometimes it recognized, sometimes nope (generally because developers use custom function to hash). After the encryption method detected, you have to use a brute-force attack with dictionaries to test passwords. Maybe try the hash on Crackstation or Weakpass first, possibility to save time after a brute-force.
This is the only method you can crack password.
thank u for providing further advice, not all encryption is possible to decrypt? if I'm not talking nonsense (I'm not at all specialized in the subject)
To be clear, you have two methods to protect datas: encryption and hashing.
The encryption is the way you need to protect datas and reuse this one later, you can find base64 or AES-256 method to encrypt datas for exemple. Finally, the hashing is an one way encryption used to only validate datas, when you have to validate the integrity of a file for exemple (checksum).
I give you this picture to understand what I mean.
https://cdn.prod.website-files.com/5ff66...ashing.jpg
Posts: 137
Threads: 9
Joined: Jun 2024
(Aug 06, 2024, 09:46 PM)cod3x Wrote: (Aug 06, 2024, 09:35 PM)Elgrandetiti777 Wrote: (Aug 06, 2024, 09:16 PM)cod3x Wrote: Personally, I use hashid to guess the encryption method for a password. Sometimes it recognized, sometimes nope (generally because developers use custom function to hash). After the encryption method detected, you have to use a brute-force attack with dictionaries to test passwords. Maybe try the hash on Crackstation or Weakpass first, possibility to save time after a brute-force.
This is the only method you can crack password.
thank u for providing further advice, not all encryption is possible to decrypt? if I'm not talking nonsense (I'm not at all specialized in the subject)
To be clear, you have two methods to protect datas: encryption and hashing.
The encryption is the way you need to protect datas and reuse this one later, you can find base64 or AES-256 method to encrypt datas for exemple. Finally, the hashing is an one way encryption used to only validate datas, when you have to validate the integrity of a file for exemple (checksum).
I give you this picture to understand what I mean.
https://cdn.prod.website-files.com/5ff66...ashing.jpg
oh okay thank u very much, that's very interesting, is it possible to have hashed text encrypted for more security?
Posts: 200
Threads: 13
Joined: Jan 2024
(Aug 06, 2024, 10:36 PM)Elgrandetiti777 Wrote: (Aug 06, 2024, 09:46 PM)cod3x Wrote: (Aug 06, 2024, 09:35 PM)Elgrandetiti777 Wrote: (Aug 06, 2024, 09:16 PM)cod3x Wrote: Personally, I use hashid to guess the encryption method for a password. Sometimes it recognized, sometimes nope (generally because developers use custom function to hash). After the encryption method detected, you have to use a brute-force attack with dictionaries to test passwords. Maybe try the hash on Crackstation or Weakpass first, possibility to save time after a brute-force.
This is the only method you can crack password.
thank u for providing further advice, not all encryption is possible to decrypt? if I'm not talking nonsense (I'm not at all specialized in the subject)
To be clear, you have two methods to protect datas: encryption and hashing.
The encryption is the way you need to protect datas and reuse this one later, you can find base64 or AES-256 method to encrypt datas for exemple. Finally, the hashing is an one way encryption used to only validate datas, when you have to validate the integrity of a file for exemple (checksum).
I give you this picture to understand what I mean.
https://cdn.prod.website-files.com/5ff66...ashing.jpg
oh okay thank u very much, that's very interesting, is it possible to have hashed text encrypted for more security?
It can be possible, but the best practice is to use a salt. 
Posts: 6
Threads: 0
Joined: Aug 2024
(Aug 06, 2024, 10:36 PM)Elgrandetiti777 Wrote: (Aug 06, 2024, 09:46 PM)cod3x Wrote: (Aug 06, 2024, 09:35 PM)Elgrandetiti777 Wrote: (Aug 06, 2024, 09:16 PM)cod3x Wrote: Personally, I use hashid to guess the encryption method for a password. Sometimes it recognized, sometimes nope (generally because developers use custom function to hash). After the encryption method detected, you have to use a brute-force attack with dictionaries to test passwords. Maybe try the hash on Crackstation or Weakpass first, possibility to save time after a brute-force.
This is the only method you can crack password.
thank u for providing further advice, not all encryption is possible to decrypt? if I'm not talking nonsense (I'm not at all specialized in the subject)
To be clear, you have two methods to protect datas: encryption and hashing.
The encryption is the way you need to protect datas and reuse this one later, you can find base64 or AES-256 method to encrypt datas for exemple. Finally, the hashing is an one way encryption used to only validate datas, when you have to validate the integrity of a file for exemple (checksum).
I give you this picture to understand what I mean.
https://cdn.prod.website-files.com/5ff66...ashing.jpg
oh okay thank u very much, that's very interesting, is it possible to have hashed text encrypted for more security?
these are two different ideas. hashing answers the question "how can i be sure this text is exactly what was originally created?" encryption answers the question "how do i make sure only certain people can read the text?"
Posts: 86
Threads: 5
Joined: Aug 2023
You don't generally "decrypt" hashed stuff. You typically "guess" until you come up to the same hash. For example, passwords are stored as a password hash (normally with a salt). To recover the password, you would need to try a series of passwords with the same salt, to see if the hashes match up. Hashcat is a great tool for password hash cracking.
|
