中国网络渗透测试联盟

标题: 爆破、破解Disduz x 2.5 md5(md5(pass)$salt)密码加密 [打印本页]
作者: admin    时间: 2013-2-14 00:03
标题: 爆破、破解Disduz x 2.5 md5(md5(pass)$salt)密码加密
测试环境& F/ D& u. p/ J% x) `
OS 名称: Microsoft® Windows Server® 2008 Enterprise- K! S+ f' x& `5 R# Z( [! Z
OS 版本: 6.0.6001 Service Pack 1 Build 6001
! r" x+ J5 q& Y- @OS 制造商: Microsoft Corporation. j) Y/ c7 B' Y
OS 配置: 独立服务器
: m# ^$ t# x2 x$ {OS 构件类型: Multiprocessor Free2 A' r5 `1 v1 y& Y7 Z, B1 |0 ^2 B" p
注册的所有人: Windows 用户' h/ T3 O$ A/ ~5 z' A6 i
系统型号: PowerEdge R620
+ I. C$ f$ ~/ Q! z系统类型: x64-based PC% t6 E+ t; o" [) v7 I3 {* F
处理器: 安装了 1 个处理器。
* {; d% Z( v+ ]5 Z[01]: Intel64 Family 6 Model 45 Stepping 7 GenuineIntel ~2400
$ b3 E, A- H3 v- R2 m/ ~  acat md5.txt
/ ~. [# J9 K9 s& x7 I# Y8 V3fb78e9bc0b297e3de4e77531766c37a:f29f95 /* = md5中无法查询的。*/
8 C. j! R# x" `# z% U) N* B. W865a697fb9b4bd9c6737432aaff136bd:22dc87 /* = 304892415 */* r' O0 @" x+ A, c( A9 ^) f% _- d
15b7a21513f24ffe97d9f9830acf51ad:07626c /* = 123456 */
% ]" a- B! \  H1 [ /* -a 使用穷举模式 -m HASH的类型是VB DISCUZ跟DV加密是一样,?d是代表数字 穷举10个数字 */ hashcat-cli64.exe -a 3 -m 2611 md5.txt ?d?d?d?d?d?d?d?d?d?d! T. k& f" i  H) \: Z6 T& C4 V1 h1 D
Input.Mode: Mask (?d?d?d?d?d)
! h5 n9 {4 N! v* PIndex…..: 0/1 (segment), 100000 (words), 0 (bytes)
0 f7 e- J& Y+ I9 M  Z' c9 H6 FRecovered.: 0/3 hashes, 0/3 salts
# b8 @5 d. c! f& N6 ~Speed/sec.: – plains, – words
% u. h( l3 R5 mProgress..: 100000/100000 (100.00%)4 R& y. z& C' A' A7 P; G) U
Running…: –:–:–:–
; g2 S  j  q7 [5 [! xEstimated.: –:–:–:–
+ l: l1 a* }+ h' |/ |" v15b7a21513f24ffe97d9f9830acf51ad:07626c:1234560 y% O. J) v( Z# Y$ W7 l# `0 W5 O
Input.Mode: Mask (?d?d?d?d?d?d)
1 x1 F; \" g9 O! M) O( vIndex…..: 0/1 (segment), 1000000 (words), 0 (bytes)7 C# C+ \, R: h, }8 W- j
Recovered.: 1/3 hashes, 1/3 salts; o6 c* M4 J$ y8 ~( i, j
Speed/sec.: 7.43M plains, 3.72M words
' @8 l( Y& H# G$ h  v/ eProgress..: 1000000/1000000 (100.00%)
/ m0 G! K, O3 U0 uRunning…: 00:00:00:01/ V( Z  Y$ I# w
Estimated.: –:–:–:–
( I* S! U9 c3 L8 m4 wInput.Mode: Mask (?d?d?d?d?d?d?d)9 K* ]3 `# x" A- a+ D4 `
Index…..: 0/1 (segment), 10000000 (words), 0 (bytes)8 A% t( R" U; z: K
Recovered.: 1/3 hashes, 1/3 salts; h% g6 m' j) l# ]5 C
Speed/sec.: 13.67M plains, 6.83M words* n' C1 \% D  }2 Y$ z
Progress..: 10000000/10000000 (100.00%)
1 s( E! F; Y+ U" m' c1 L7 Q6 X  j' uRunning…: 00:00:00:01  y6 c. Z9 W& k5 o
Estimated.: –:–:–:–! u+ T, z) G5 ~3 ~
Input.Mode: Mask (?d?d?d?d?d?d?d?d)
  u- u3 A0 |$ ^& V; pIndex…..: 0/1 (segment), 100000000 (words), 0 (bytes)( S8 D( t4 [" a$ H9 a6 y
Recovered.: 1/3 hashes, 1/3 salts
2 |# D# A* j2 P5 S6 C2 Y3 _9 iSpeed/sec.: 18.59M plains, 9.29M words: }3 s9 d$ P3 s  E
Progress..: 100000000/100000000 (100.00%)
, E4 C: [- i4 j, QRunning…: 00:00:00:11
9 r6 W% v" X( D" ?Estimated.: –:–:–:–% H8 `! v, m+ x0 W
865a697fb9b4bd9c6737432aaff136bd:22dc87:304892415
' o. `, Y$ p" w; m- N2 r2 B- s2 f可以看到破解 9位3开纯数字密码需要11秒。7 d; h: |1 [% Q" H9 H4 G( U
Input.Mode: Mask (?d?d?d?d?d?d?d?d?d?d)% O$ w$ E  v8 i  n7 L4 D$ F1 }
Index…..: 0/1 (segment), 10000000000 (words), 0 (bytes)- h) e" ~' G5 y: X: C
Recovered.: 2/3 hashes, 2/3 salts- P& v$ q5 w7 w# h' O: b5 q* t: s
Speed/sec.: 12.70M plains, 12.70M words! K3 F8 ~5 N0 i
Progress..: 10000000000/10000000000 (100.00%)" `& B% ^* ]7 ?1 c0 \) {
Running…: 00:00:13:07& f3 P8 }7 a8 t* Y- K$ Z* X" Z
Estimated.: –:–:–:–4 l( x0 h' F$ L$ d# y. }9 R: o# h2 h
而10个数字即需要13分钟,这样的速度如果有服务器是8核或更多,或者自己GPU强劲,会更加快,我测试只是用了一个入门级的CPU。
2 l3 E0 l6 n# U在这里可以下载到一些字典,不过国人对这些字典貌似无视。
* o% L3 ]' Y9 T) phttp://blog.g0tmi1k.com/2011/06/dictionaries-wordlists.html



欢迎光临 中国网络渗透测试联盟 (https://cobjon.com/) Powered by Discuz! X3.2