AIM "md5 library"
I think I get it… you simply take a dictionary (or text word) and encrypt them into MD5, then store the hashes somewhere. And whenever you call on a hash, it display the dictionary word (in plaintext). Simple, yet ingenious. Much faster than bruteforcing.
How can I make a DB out of them, tho? Do you know how jake programmed his bot to retrieve the compare the hashes, and retrieve the plaintext?
Noooo you don't understand, it doesn't ENCRYPT it…. It will decrypt a hash.
IE If you have an admin password you would like to decrpyt, chances are the bot will crack it. Just like you would say hello on AIM. you input the hash, wait for 5-10 seconds and bam, cracked
To add a hash i believe it's just
'add <insert hash>'
It can also work out maths sums etc. just hit in 'help' and see what you can do. I have added 4 word lists so far.
Another thanks to Jake for this tool
flash, i do understand. I'm just saying that to store the hashes to the DBase, jake/aldarhawk had to encrypt some plaintext words/passwords, so that their hashes can be compared with the hash a user wants to "crack", then the original plaintext is gets "decrypted". the AIM bot does not, technically, crack hashes; it just decrypts. I know how to use it, by the way, it's just: Crack = "md5hashed5triNg"
I give great props to Jake as he was the one who coded it and keeps it online using his server. Almost everytime I try Gdataonline.com or Milw0rm, and they don't have my hash, I go to Jake's bot. Rarely it doesnt have the hash so therefore I retreat to the brute force at AldarHawk's site which is another fine bit of coding. Grats to both Jake and AldarHawk and everyone who helped them. Thanks for your guys work!
the way you add a hash into the library is using the ADD command.
But you do it like this format:
Add <plaintext>
it will look into the database and see if the plain text is in the list. if not then it will add it and hash it for you. That is all. it is that simple. Also it takes input from Jake when he runs addition querys on it. He runs them frequntley.
Also do not forget that on my site is a brute forcer if the bot does not work ;)
netfish wrote: I was gonna ask the same thing… (how do you add more hashes?) AldarHawk, can you write an article about it, please? That would be greatly appreciated (I'm sure by everyone).
Lol, wouldn't I be a better candidate to tell you people about it… since I coded it and all ;)
Netfish: Cracking a 7 character long hash depends on the character set… Could you give me that?
WilleH $result = mysql_query("SELECT 'plaintext' FROM
tableWHEREhash= $hash LIMIT 1"); if ( mysql_num_rows($result) ) { echo $result } else { echo 'not found'; }
That is a very basic query, but actually since the library currently has 550,000,000 entries and I wanted it to be fast, I have optimized it. The library is split across 256 databases with 256 tables in each database, resulting in a total of 65,536 tables. Also, other things have been done to it to speed up the process.
And I am currently working on a new version, which once public, will work for both AIM and MSN. It should be finished within the next couple weeks.
Oh, that's what you were talking about. The way you capitalized "Hash" lead me to think you were saying that MD5s were not hashes. Still, it was just a simple mistake on his behalf, You know what he meant :)
As a side note, the MSN version is up :) (It's still being worked on, so it's not fully functional yet)
md5 Reverse Lookup Databases