search

glv2 / bruteforce-salted-openssl

Try to find the password of a file that was encrypted with the 'openssl' command.
Other
205 stars 52 forks source link

How to brute force a string? #5

Closed ArneAnka closed 6 years ago

ArneAnka commented 7 years ago

Hi! Lets say I have a string, encrypted with

echo "This is a test"|openssl enc -aes-256-cbc -base64 -nosalt

w2j7eABqUq2t6HxucMP8hg==

How to i approach this with a password table?

glv2 commented 7 years ago

The program currently only works with salted passwords (i.e. encrypted with the -salt option):

echo "This is a test" | openssl enc -aes-256-cbc -base64 -salt
U2FsdGVkX1/Q+6o//TDgSajanszT9xshz+MmKHMf9Cs=

If you had the base64 encoding of a string encrypted with a salt, you could do:

echo U2FsdGVkX1/Q+6o//TDgSajanszT9xshz+MmKHMf9Cs= | base64 -d > data.aes256
bruteforce-salted-openssl -t 4 -f dictionary-file data.aes256