Closed lap1nou closed 9 months ago
Hey, thank you for opening this issue! 🙂 To boost priority on this issue and support open source please tip the team at https://issuehunt.io/r/noraj/haiti/issues/160
Where those hash are coming from? Which software and version? The format don't seem common.
Not supported yet:
Supported:
Hey @noraj,
I saw one of them being used by this: https://werkzeug.palletsprojects.com/en/3.0.x/utils/#module-werkzeug.security.
Ok I'll check if it's python hashlib format or if it's werkzeug that is formating them this way.
hashlib by itself format classical format either in hex or raw binary
>>> import hashlib
>>> hashlib.pbkdf2_hmac('md5', b'password', b'bad salt' * 2, 500_000).hex()
'07fbc83dbfa2c08236c1fb59a56e58ef'
werkzeug use this format
>>> import werkzeug
>>> werkzeug.security.generate_password_hash('password', method='pbkdf2:md5', salt_length=16)
'pbkdf2:md5:600000$KeQ0sF2wqnb9UI5Z$9cc66c4bde295ec5d5ed1417cd36aa1b'
So could you tell me more about where does this hash come from? Because the format doesn't match.
I added a lot of new formats and enhanced existing ones related to PBKDF2 in this branch: https://github.com/noraj/haiti/compare/noraj/pbkdf2?expand=1
There is still some work:
@noraj Thank you really much, sorry I couldn't help you I had a lot of work this week, hope I can contribute someday.
Regards.
@lap1nou Do you want me to assign you #162?
@noraj I can try to propose some changes yup.
About PBKDF2?
Yeah please do. Make a comment on it so I can assign it to you.
@lap1nou I would like to release 2.0.0 this weekend, so I'll manage #162 myself as I see on your fork that you don't have a WPA branch yet. So please don't start to work on it. If you want to add some new types, please look at uncommon hash types on https://hashcat.net/wiki/doku.php?id=example_hashes and check if they exist in prototypes.json. Thanks for wanting to help ;)
Update: I tagged #162 for 2.0.1 milestone so please feel free to work on it.
Hello,
Thank you for this amazing tool.
I think hash of type
PBKDF2-HMAC-*
is not recognized, for example the hash mode11900
ofhashcat
:Regards.