A Taste Of Reality: DES (Unix) Hashes cracking using GPU

Tuesday, June 14, 2011 | Author: Deep Flash

I had to make this blog post, about the Included Support for DES (Unix) hashes in Oclhashcat-plus new version 0.04

type: improvement
file: kernels
desc: added -m 1500 = descrypt, DES(Unix), Traditional DES
refe: http://hashcat.net/forum/thread-299.html

Though we are aware that DES hashes are old and not used in top notch security systems anymore. There are harder and better encryption algorithms out there.

But due to the ignorance of many Webmasters who think that implementing Strongbox or OCR Security at their login pages is the last step of security, they forget that the hashes need to be hard-to-decrypt as well.

"You close the Doors and we'll find the Windows to Get In "

Hola amigos!! ever thought of cracking DES hashes using the parallel processing power of GPUs?

oclhashcat-plus v0.04 has support for DES Unix Hashes.

You need to pass the -m 1500 argument at the command line while running oclhashcat

Hardware Support!

Now this is the most important part. You need to install ATI Catalyst 11.04 and ATI Stream SDK verison 2.4 installed.

However, I believe, it means that it has support for the latest drivers and SDK as well. But it can still run on older versions of SDK as long as you have the OpenCL support. I need to confirm this by running some tests.

In my case, I don't have a strong GPU. I am using an ATI Radeon HD Mobility 4570. ATI Radeon HD 4xxx series are supposed to be slow with oclhashcat due to bad OpenCL Support, so that's not good news for me. But it gives me a reason to go for better GPU now.

I want to decompile the m1500 kernels and read the code :) For my GPU the Kernel used will be: m1500.ATI RV710.64.kernel

The first biggest contribution of oclhashcat to me was the support for ATI Radeon HD Graphic Cards using OpenCL. And now they have DES Support, just pure awesomeness!!

Most of the passfiles retrieved from the servers by expoiting them; still have many DES hashes in them. Makes our life easier. Though down the line, we can expect stronger security mechanisms in Websites making it harder to intrude them.

After revisiting the bugs in some websites I already noticed that in the past 1 year they have advanced from DES to MD5 already.

"Who buys GPUs for gaming any more?!" :D

Listening Now: Kim Wilde - Words Fell Down

This entry was posted on Tuesday, June 14, 2011 and is filed under . You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

A Taste Of Reality

0 comments:

Post a Comment

About Me

Blog Archive