Stamp Out Hash Corruption, Crack All The Things
- Type
- Paper
- Tags
- cracking
- Authors
- Jonathan Claudius, Ryan Reynolds
- Event
- Black Hat USA 2012
- Indexed on
- Jun 23, 2014
- URL
- https://media.blackhat.com/bh-us-12/Briefings/Reynolds/BH_US_12_Reynods_Stamp_Out_Hash_WP.pdf
- File name
- BH_US_12_Reynods_Stamp_Out_Hash_WP.pdf
- File size
- 316.5 KB
- MD5
- 000cc85b234a302f17d038b78221c1c9
- SHA1
- 7d2dadd5827e9a7bc18a25f692de5f051369f9fb
The precursor to cracking any password is getting the right hash. In this talk we are going to cover how we discovered that Cain and Able, Creddump, Metasploit and other hash extraction tools regularly yield corrupt hashes that cannot be cracked. We will take a deep dive into password extraction mechanics, the birth of a viral logic flaw that started it all and how to prevent corrupt hashes. At the conclusion of this talk we will release patches that prevent hash corruption in these tools that many security professionals use every day
About us
Secdocs is a project aimed to index high-quality IT security and hacking documents. These are fetched from multiple data sources: events, conferences and generally from interwebs.
Statistics
Serving 8166 documents and 531.0 GB of hacking knowledge, indexed from 2419 authors from 163 security conferences.
Contribute
To support this site and keep it alive, you can click on the buttons below. Any help is really appreciated! This service is provided for free, but real money is needed to pay bills.
