Collaborate Disseminate
I have found a flaw in a site where the password reset feature resets passwords in the following format
[A-Z][0-9][a-z][0-9][a-z][0-9][A-Z]
Eg: A0b1c2D
I’m trying to determine how many possible password combinations there are for a system … Continue reading How can i calculate the number of possible passwords? [closed]
I’m trying to do two things here.
The first is poison the cache of a target DNS server. A scan has suggested the network I’m attacking is vulnerable to CVE-1999-0024.
My understanding of this vulnerability is that it allows me to to ‘tel… Continue reading DNS Cache Poisoning and Snooping
I’ve got a copy of a Cisco ASA config and i want to crack the following example passwords
I’ve got the following lines in the config
ASA Version 8.4(2)
!
hostname ciscoasa
enable password 8Ry2YjIyt7RRXU24 encrypted
passwd 2KFQnbNIdI.2KYOU encrypted
names
!
So I want to try and crack the enable password, but i don’t know what format it is or what tool i can use to brute force it. (Note the hash there is not the real hash, just a random hash i found online like the original)
I already know the password is “cisco” for passwd, but if that was different, how can i go about cracking it? Are these two passwords the same format/hash type (the first doesn’t have any ‘punctuation’ but that might just be by chance.
I’m familiar with cracking the MD5 passwords, level/type 7 ‘secrets’ etc but not cracking the enable password for IOS devices.
Extra Credit:
There are also the following lines with multiple usernames in it which i assume are the same format as above.
!
no threat-detection statistics tcp-intercept
ntp server
webvpn
username test password hmQhTUMT1T5Z4KHC encrypted privilege 15
!
I tried adding the ‘known’ cisco hash into the PIX-MD5 in cain manually, but it didn’t work (used a dict with cisco in it). See below:
Hope someone can help,
Thanks!