Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Date: Thu, 21 Jul 2016 19:50:51 +0300
From: Solar Designer <>
Subject: Re: need to find salt

On Thu, Jul 21, 2016 at 10:18:01AM -0500, jfoug wrote:
> About the only way to 'find' this, is to generate all the salts 
> yourself, and simply use md5-raw.

Why?!  I think it's simpler and more efficient to treat the known
password as salt, and the unknown salt as password being cracked, so
that JtR's builtin cracking modes can be used to attack the salt instead
of the password.  Once a match is found, switch the password/salt back
in their proper order so that other (unknown) passwords can be cracked
with the now-known salt.


Powered by blists - more mailing lists

Your e-mail address:

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.