eworm-de
commented
1 year ago Do you have a reference for that?
Open Lutzion opened 1 year ago
eworm-de
commented
1 year ago Do you have a reference for that?
Lutzion
commented
1 year ago I found those on the net: https://www.browserling.com/tools/ntlm-hash "... As NTLM hashes are uppercase 32 hex digits in length ..."
and
https://administrator.de/forum/nt-password-nt-hash-unter-windows-generieren-364398.html "... // Make it uppercase, not necessary, but it's common to do so with NTLM hashes ..."
https://forum.portswigger.net/thread/uppercase-when-authenticated-with-ntlm-f697dd1d " ... The NTLM specification involves converting the username to upper case, and the LM hash even converts the password to upper case ... "
Actually i searched for your program when using NT-Password in daloRADIUS to verify the password. daloRADIUS also converts the password to uppercase when using NT-Password.
eworm-de
commented
1 year ago That are some vague hints, but no more.
Actually the second link is something different... It states that username and password are converted to uppercase before being processed for NTLM.
As far as i read everywhere a NT(LM)-Hash should be uppercase, so maybe change
printf("%02x", digest[i]);toprintf("%02X", digest[i]);Thanks for that tool. Lutz