Ethical Hacking – Password Hashes

Password Hashes

After your lab experience with password hashes, lets look at the Cisco, Windows, and Linux password hashes in the list below.

What is a password hash?
RedHat and Cisco passwords are salted while Windows passwords are not. What does that mean?
What are some software tools that can be used to crack password hashes?
Are there any websites that can be used to crack passwords?
If you can crack any of the passwords, post your findings.

Again, this is not intended to be an extensive assignment. You shouldnt have to spend a lot of time to answer the questions.

Finally, what do you feel are some best practices to avoid having your own personal passwords cracked? Note: If a word is listed before the hash, that is the username being provided.

Cisco Type 7

08224D42001F0A051C020D

0832595C0F1C17

Cisco Type 5

$1$mERr$hx5rVt7rPNoS4wqbXKX7m0

Windows

eagles:””:””:B100E9353E9FA8E8E72C57EF50F76A05:476788B1A5DA9EA8BAD2DE16328E77D7

tom:””:””:5C9059611FF9BC49AAD3B435B51404EE:5F0D3E40FCEFCE47C87142D85AE024C8

bill:””:””:3A087C6FAED6FB70AAD3B435B51404EE:FA0447F7AC1156CB8A2F87245348C566

cookie:””:””:C1E93C824B1CFAA8AAD3B435B51404EE:8969A961103AF73FCC0748E43C5FF7F2

elmo:””:””:D30164DE174649CAAAD3B435B51404EE:E894D1C5CF0D494266F598B3E133AB54

ernie:””:””:C34A2BD1F1E1138DAAD3B435B51404EE:2908DAB3584EDD2460A02E9BDF604E9F

luke:””:””:0FB2BA42035F6B70AAD3B435B51404EE:4B43CB4B09E7F914A0AF81DBCC4B7256

vader:””:””:92FFF08D536C01DEAAD3B435B51404EE:B1739F7FC8377E25C77CFA2DFBDC3EC7

Linux:

jabba:$1$EOOf8aCq$CxX.EjJzy8B8cNm1pXL6Y0:17568:0:99999:7:::

root:$1$F1mYtUEn$DBQd0.FMl0rS8thGYKbMt0:17568:0:99999:7:::

r2d2:$1$lC0W.dhB$osdsuKbdzk1Ifkj3fJHeH1:17568:0:99999:7:::

c3p0:$1$k70QiSfi$fNmJmF2kA3WV9agV9Hfwa.:17568:0:99999:7:::

Leave a Reply

Your email address will not be published. Required fields are marked *