• Home

  • Documents

  • Chapter 3: HashingChapter 3: Hashing Hashing Types. Hashing Methods. Salting. Collisions. LM and...
38
Chapter 3: Hashing Hashing Types. Hashing Methods. Salting. Collisions. LM and NTLM Hashes (Windows). Hash Benchmarks. Message Authentication Codes (MACs). OTP/HOTP. Prof Bill Buchanan OBE http://asecuritysite.com/crypto03 http://asecuritysite.com/encryption

Chapter 3: HashingChapter 3: Hashing Hashing Types. Hashing Methods. Salting. Collisions. LM and NTLM Hashes (Windows). Hash Benchmarks. Message Authentication Codes (MACs)

  • Upload
    others

  • View
    29

  • Download
    0

Embed Size (px)

Citation preview

Page 1: Chapter 3: HashingChapter 3: Hashing Hashing Types. Hashing Methods. Salting. Collisions. LM and NTLM Hashes (Windows). Hash Benchmarks. Message Authentication Codes (MACs)

Chapter3:Hashing HashingTypes. HashingMethods. Salting. Collisions. LMandNTLMHashes(Windows). HashBenchmarks. MessageAuthenticationCodes(MACs). OTP/HOTP. ProfBillBuchananOBE http://asecuritysite.com/crypto03http://asecuritysite.com/encryption

Page 2: Chapter 3: HashingChapter 3: Hashing Hashing Types. Hashing Methods. Salting. Collisions. LM and NTLM Hashes (Windows). Hash Benchmarks. Message Authentication Codes (MACs)

Chapter3:Hashing HashingTypes.HashingMethods. Salting. Collisions. LMandNTLMHashes(Windows). HashBenchmarks. MessageAuthenticationCodes(MACs). OTP/HOTP. SecretShares. ProfBillBuchananOBE http://asecuritysite.com/crypto03http://asecuritysite.com/encryption

Page 3: Chapter 3: HashingChapter 3: Hashing Hashing Types. Hashing Methods. Salting. Collisions. LM and NTLM Hashes (Windows). Hash Benchmarks. Message Authentication Codes (MACs)
Page 4: Chapter 3: HashingChapter 3: Hashing Hashing Types. Hashing Methods. Salting. Collisions. LM and NTLM Hashes (Windows). Hash Benchmarks. Message Authentication Codes (MACs)
Page 5: Chapter 3: HashingChapter 3: Hashing Hashing Types. Hashing Methods. Salting. Collisions. LM and NTLM Hashes (Windows). Hash Benchmarks. Message Authentication Codes (MACs)
Page 6: Chapter 3: HashingChapter 3: Hashing Hashing Types. Hashing Methods. Salting. Collisions. LM and NTLM Hashes (Windows). Hash Benchmarks. Message Authentication Codes (MACs)
Page 7: Chapter 3: HashingChapter 3: Hashing Hashing Types. Hashing Methods. Salting. Collisions. LM and NTLM Hashes (Windows). Hash Benchmarks. Message Authentication Codes (MACs)
Page 8: Chapter 3: HashingChapter 3: Hashing Hashing Types. Hashing Methods. Salting. Collisions. LM and NTLM Hashes (Windows). Hash Benchmarks. Message Authentication Codes (MACs)
Page 9: Chapter 3: HashingChapter 3: Hashing Hashing Types. Hashing Methods. Salting. Collisions. LM and NTLM Hashes (Windows). Hash Benchmarks. Message Authentication Codes (MACs)
Page 10: Chapter 3: HashingChapter 3: Hashing Hashing Types. Hashing Methods. Salting. Collisions. LM and NTLM Hashes (Windows). Hash Benchmarks. Message Authentication Codes (MACs)
Page 11: Chapter 3: HashingChapter 3: Hashing Hashing Types. Hashing Methods. Salting. Collisions. LM and NTLM Hashes (Windows). Hash Benchmarks. Message Authentication Codes (MACs)
Page 12: Chapter 3: HashingChapter 3: Hashing Hashing Types. Hashing Methods. Salting. Collisions. LM and NTLM Hashes (Windows). Hash Benchmarks. Message Authentication Codes (MACs)
Page 13: Chapter 3: HashingChapter 3: Hashing Hashing Types. Hashing Methods. Salting. Collisions. LM and NTLM Hashes (Windows). Hash Benchmarks. Message Authentication Codes (MACs)

BruteForce-Howmanyhashcodes?

• 7digitpasswordwith[a-z]…howmany?• Ans:• Timetocrack-100billionpersecond:

• 7digitwith[a-zA-z]…howmany?• Ans:• Timetocrack–100billionpersecond:

• 7digitwith[a-zA-z!@#$%^&*()]…howmany?• Ans:• Timetocrack–100billionpersecond:

Page 14: Chapter 3: HashingChapter 3: Hashing Hashing Types. Hashing Methods. Salting. Collisions. LM and NTLM Hashes (Windows). Hash Benchmarks. Message Authentication Codes (MACs)

Chapter3:Hashing HashingTypes. HashingMethods. Salting. Collisions. LMandNTLMHashes(Windows). HashBenchmarks. MessageAuthenticationCodes(MACs). OTP/HOTP. SecretShares. ProfBillBuchananOBE http://asecuritysite.com/crypto03http://asecuritysite.com/encryption

Page 15: Chapter 3: HashingChapter 3: Hashing Hashing Types. Hashing Methods. Salting. Collisions. LM and NTLM Hashes (Windows). Hash Benchmarks. Message Authentication Codes (MACs)
Page 16: Chapter 3: HashingChapter 3: Hashing Hashing Types. Hashing Methods. Salting. Collisions. LM and NTLM Hashes (Windows). Hash Benchmarks. Message Authentication Codes (MACs)
Page 17: Chapter 3: HashingChapter 3: Hashing Hashing Types. Hashing Methods. Salting. Collisions. LM and NTLM Hashes (Windows). Hash Benchmarks. Message Authentication Codes (MACs)
Page 18: Chapter 3: HashingChapter 3: Hashing Hashing Types. Hashing Methods. Salting. Collisions. LM and NTLM Hashes (Windows). Hash Benchmarks. Message Authentication Codes (MACs)

Chapter3:Hashing HashingTypes. HashingMethods. Salting. Collisions. LMandNTLMHashes(Windows). HashBenchmarks. MessageAuthenticationCodes(MACs). OTP/HOTP. SecretShares. ProfBillBuchananOBE http://asecuritysite.com/crypto03http://asecuritysite.com/encryption

Page 19: Chapter 3: HashingChapter 3: Hashing Hashing Types. Hashing Methods. Salting. Collisions. LM and NTLM Hashes (Windows). Hash Benchmarks. Message Authentication Codes (MACs)
Page 20: Chapter 3: HashingChapter 3: Hashing Hashing Types. Hashing Methods. Salting. Collisions. LM and NTLM Hashes (Windows). Hash Benchmarks. Message Authentication Codes (MACs)
Page 21: Chapter 3: HashingChapter 3: Hashing Hashing Types. Hashing Methods. Salting. Collisions. LM and NTLM Hashes (Windows). Hash Benchmarks. Message Authentication Codes (MACs)
Page 22: Chapter 3: HashingChapter 3: Hashing Hashing Types. Hashing Methods. Salting. Collisions. LM and NTLM Hashes (Windows). Hash Benchmarks. Message Authentication Codes (MACs)

Chapter3:Hashing HashingTypes. HashingMethods. Salting. Collisions. LMandNTLMHashes(Windows). HashBenchmarks. MessageAuthenticationCodes(MACs). OTP/HOTP. SecretShares. ProfBillBuchananOBE http://asecuritysite.com/crypto03http://asecuritysite.com/encryption

Page 23: Chapter 3: HashingChapter 3: Hashing Hashing Types. Hashing Methods. Salting. Collisions. LM and NTLM Hashes (Windows). Hash Benchmarks. Message Authentication Codes (MACs)
Page 24: Chapter 3: HashingChapter 3: Hashing Hashing Types. Hashing Methods. Salting. Collisions. LM and NTLM Hashes (Windows). Hash Benchmarks. Message Authentication Codes (MACs)
Page 25: Chapter 3: HashingChapter 3: Hashing Hashing Types. Hashing Methods. Salting. Collisions. LM and NTLM Hashes (Windows). Hash Benchmarks. Message Authentication Codes (MACs)

C:\openssl>opensslmd5hash01.jpgMD5(hash01.jpg)=e06723d4961a0a3f950e7786f3766338 C:\openssl>opensslmd5hash02.jpgMD5(hash02.jpg)=e06723d4961a0a3f950e7786f3766338

NatMcHugh• 10hoursofcomputingontheAmazon

GPUCloud.• Cost:60cents• Used:Hashcat(onCUDA)• Birthdayattack:Agroupsizeofonly70

peopleresultsina99.9%chanceoftwopeoplesharingthesamebirthday.

• M-bitoutputthereare2^mmessages,andthesamehashvaluewouldonlyrequire2^(m/2)randommessages.18,446,744,073,709,551,616.

Page 26: Chapter 3: HashingChapter 3: Hashing Hashing Types. Hashing Methods. Salting. Collisions. LM and NTLM Hashes (Windows). Hash Benchmarks. Message Authentication Codes (MACs)

Chapter3:Hashing HashingTypes. HashingMethods. Salting. Collisions. LMandNTLMHashes(Windows). HashBenchmarks. MessageAuthenticationCodes(MACs). OTP/HOTP. SecretShares. ProfBillBuchananOBE http://asecuritysite.com/crypto03http://asecuritysite.com/encryption

Page 27: Chapter 3: HashingChapter 3: Hashing Hashing Types. Hashing Methods. Salting. Collisions. LM and NTLM Hashes (Windows). Hash Benchmarks. Message Authentication Codes (MACs)
Page 28: Chapter 3: HashingChapter 3: Hashing Hashing Types. Hashing Methods. Salting. Collisions. LM and NTLM Hashes (Windows). Hash Benchmarks. Message Authentication Codes (MACs)
Page 29: Chapter 3: HashingChapter 3: Hashing Hashing Types. Hashing Methods. Salting. Collisions. LM and NTLM Hashes (Windows). Hash Benchmarks. Message Authentication Codes (MACs)
Page 30: Chapter 3: HashingChapter 3: Hashing Hashing Types. Hashing Methods. Salting. Collisions. LM and NTLM Hashes (Windows). Hash Benchmarks. Message Authentication Codes (MACs)
Page 31: Chapter 3: HashingChapter 3: Hashing Hashing Types. Hashing Methods. Salting. Collisions. LM and NTLM Hashes (Windows). Hash Benchmarks. Message Authentication Codes (MACs)

HashCrackers/BitCoinMiners

FastHashOne• 1.536TH/s–Cost3-5,000dollars.

25GPUHashCracker• AneightcharacterNTLMpassword

crackedin5.5hours.14characterLMhashcrackedinsixminutes.350billionhashespersecond.

Page 32: Chapter 3: HashingChapter 3: Hashing Hashing Types. Hashing Methods. Salting. Collisions. LM and NTLM Hashes (Windows). Hash Benchmarks. Message Authentication Codes (MACs)

Chapter3:Hashing HashingTypes. HashingMethods. Salting. Collisions. LMandNTLMHashes(Windows). HashBenchmarks.MessageAuthenticationCodes(MACs). OTP/HOTP. ProfBillBuchananOBE http://asecuritysite.com/crypto03http://asecuritysite.com/encryption

Page 33: Chapter 3: HashingChapter 3: Hashing Hashing Types. Hashing Methods. Salting. Collisions. LM and NTLM Hashes (Windows). Hash Benchmarks. Message Authentication Codes (MACs)

Benchmark

Benchmark

Hashes“Thequickbrownfoxjumpsoverthelazydog:

SHA-1: 2fd4e1c67a2d28fced849ee1bb76e7391b93eb12SHA-256: d7a8fbb307d7809469ca9abcb0082e4f8d5651e46d3cdb762d02d0bf37c9e592SHA-512: 07e547d9586f6a73f73fbac0435ed76951218fb7d0c8d788a309d785436bbb642e93a252a954f23912547d1e8a3b5ed6e1bfd7097821233fa0538f3db854fee6

MD-5: 9e107d9d372bb6826bd81d3542a419d6DES: ZDeS94Lcq/6zgBcrypt: $2a$05$2czCv5GYgkx3aobmEyewB.ejV2hePMdbvTdCyNaSzWtlGPPjB2xx6APR1: $apr1$ZDzPE45C$3PvRanPycmNc6c2G9wT9b/PBKDF2(SHA1): $pbkdf2$5$WkR6UEU0NUM$0RB2bimWrMY.EPYibpaBT2q3HFgPBKDF2(SHA-256): $pbkdf2-sha256$5$WkR6UEU0NUM$yrJz2oJix7uBJZwZ/50vWUgdEI/i0ffqeU4obqC0pk4LMHash: a7b07f9948d8cc7f97c4b0b30cae500fNTHash: 4e6a076ae1b04a815fa6332f69e2e231MSDCC: efa9778bbc94a7360f664eb7d7144725LDAP(MD5): {MD5}9e107d9d372bb6826bd81d3542a419d6LDAP(SHA1): {SHA}2fd4e1c67a2d28fced849ee1bb76e7391b93eb12MSSQL2000: 0x0100BF77CE595DCD1FC87A37B3DEBC27A8C97355CB96B8BAB63E602662BA5D5D33B913E422499BE72FF3D9BB65DEMySQL: *A4E4D26FD0C6455E23E2187C3AABE844332AA1B3Oracle10: 4CDA2299FCAD0499Postgres(MD5): md5d44c15daa11770f25c5350f7e5408dd1CiscoPIX: kGyKN5CqdFQ1qJUsCiscoType7: 15260309443B3E2D2B3875200108010D41505640135E1B0E080519574156401540035E460B594D1D53020B5C

Page 34: Chapter 3: HashingChapter 3: Hashing Hashing Types. Hashing Methods. Salting. Collisions. LM and NTLM Hashes (Windows). Hash Benchmarks. Message Authentication Codes (MACs)

Chapter3:Hashing HashingTypes. HashingMethods. Salting. Collisions. LMandNTLMHashes(Windows). HashBenchmarks. MessageAuthenticationCodes(MACs). OTP/HOTP. ProfBillBuchananOBE http://asecuritysite.com/crypto02http://asecuritysite.com/encryption

Page 35: Chapter 3: HashingChapter 3: Hashing Hashing Types. Hashing Methods. Salting. Collisions. LM and NTLM Hashes (Windows). Hash Benchmarks. Message Authentication Codes (MACs)
Page 36: Chapter 3: HashingChapter 3: Hashing Hashing Types. Hashing Methods. Salting. Collisions. LM and NTLM Hashes (Windows). Hash Benchmarks. Message Authentication Codes (MACs)

Chapter3:Hashing HashingTypes. HashingMethods. Salting. Collisions. LMandNTLMHashes(Windows). HashBenchmarks. MessageAuthenticationCodes(MACs). OTP/HOTP.ProfBillBuchananOBE http://asecuritysite.com/crypto03http://asecuritysite.com/encryption

Page 37: Chapter 3: HashingChapter 3: Hashing Hashing Types. Hashing Methods. Salting. Collisions. LM and NTLM Hashes (Windows). Hash Benchmarks. Message Authentication Codes (MACs)
Page 38: Chapter 3: HashingChapter 3: Hashing Hashing Types. Hashing Methods. Salting. Collisions. LM and NTLM Hashes (Windows). Hash Benchmarks. Message Authentication Codes (MACs)

Chapter3:Hashing HashingTypes. HashingMethods. Salting. Collisions. LMandNTLMHashes(Windows). HashBenchmarks. MessageAuthenticationCodes(MACs). OTP/HOTP. ProfBillBuchananOBE http://asecuritysite.com/crypto03http://asecuritysite.com/encryption


Drying and Salting of Fish - ICAR

Drying and Salting of Fish - ICAR

Documents
Salting in and Salting out of proteins and Dialysis

Salting in and Salting out of proteins and Dialysis

Documents
ntlm message - pvv.org

ntlm message - pvv.org

Documents
Salting-in with a Salting-out Agent: Explaining the …path.web.ua.pt/file/jp4021307.pdfSalting-in with a Salting-out Agent: Explaining the Cation Specific Effects on the Aqueous

Salting-in with a Salting-out Agent: Explaining the …path.web.ua.pt/file/jp4021307.pdfSalting-in with a Salting-out Agent: Explaining the Cation Specific Effects on the Aqueous

Documents
SIM402. Kerberos, NTLM, Basic, Digest, Forms?

SIM402. Kerberos, NTLM, Basic, Digest, Forms?

Documents
The Password That Never Wassconce.ics.uci.edu/203-W17/honey-passwords-4.pdf · Password hashing • Hashing (plus salting) forces an attacker that learns hashes to determine passwords

The Password That Never Wassconce.ics.uci.edu/203-W17/honey-passwords-4.pdf · Password hashing • Hashing (plus salting) forces an attacker that learns hashes to determine passwords

Documents
Salting Your Pond

Salting Your Pond

Documents
Kerberos, NTLM and LM-Hash

Kerberos, NTLM and LM-Hash

Technology
Understanding the Windows SMB NTLM …...Understanding the Windows SMB NTLM Authentication Weak Nonce Vulnerability BlackHat USA 2010 Vulnerability Information ‣ Flaws in Windows’

Understanding the Windows SMB NTLM …...Understanding the Windows SMB NTLM Authentication Weak Nonce Vulnerability BlackHat USA 2010 Vulnerability Information ‣ Flaws in Windows’

Documents
Lateral Movement using Credentials Relaying · 2021. 6. 9. · 5 More NTLM… • NTLM Authentication consists of 3 message types: • When users authenticate to target via NTLM (NTLM

Lateral Movement using Credentials Relaying · 2021. 6. 9. · 5 More NTLM… • NTLM Authentication consists of 3 message types: • When users authenticate to target via NTLM (NTLM

Documents
Salting in and Salting out of proteins and Dialysis ( Isolation Of Lactate Dehydrogenase Enzyme ) BCH 333 [practical]

Salting in and Salting out of proteins and Dialysis ( Isolation Of Lactate Dehydrogenase Enzyme ) BCH 333 [practical]

Documents
· Web viewIf NTLM is supported, the server includes the word "NTLM" in the list. The messages involved are formally described in section 2.2. 1.8 Vendor-Extensible Fields The NTLM

· Web viewIf NTLM is supported, the server includes the word "NTLM" in the list. The messages involved are formally described in section 2.2. 1.8 Vendor-Extensible Fields The NTLM

Documents
Salting in and Salting out of proteins and Dialysis BCH 333 [practical]

Salting in and Salting out of proteins and Dialysis BCH 333 [practical]

Documents
[MS-NLMP]: NT LAN Manager (NTLM) Authentication Protocol

[MS-NLMP]: NT LAN Manager (NTLM) Authentication Protocol

Documents
Hubungan Salting Out, Salting in, Klatrat, Solid in Solid Solution Dengan Absorpsi-Disolusi

Hubungan Salting Out, Salting in, Klatrat, Solid in Solid Solution Dengan Absorpsi-Disolusi

Documents
Salting-in with a Salting-out Agent: Explaining the Cation ... · Salting-in with a Salting-out Agent: Explaining the Cation Specific Effects on the Aqueous Solubility of Amino Acids

Salting-in with a Salting-out Agent: Explaining the Cation ... · Salting-in with a Salting-out Agent: Explaining the Cation Specific Effects on the Aqueous Solubility of Amino Acids

Documents
Autenticando o SQUID No AD via NTLM v3

Autenticando o SQUID No AD via NTLM v3

Documents
The NTLM family cons

The NTLM family cons

Documents
Salting/Gritting Routes in Medway

Salting/Gritting Routes in Medway

Documents
Salting in and salting out of proteins - fac.ksu.edu.sa · become energetically more favorable than protein-solvent interaction. Proteins have characteristic salting out points, and

Salting in and salting out of proteins - fac.ksu.edu.sa · become energetically more favorable than protein-solvent interaction. Proteins have characteristic salting out points, and

Documents
Windows NTLM SSO weak. . . soooo weak.grutz.jingojango.net/presentations/NTLM SSO - DeepSec08.pdf · 2016-04-19 · grutz @ jingojango.net NTLM SSO Slide # Windows (NTLM) Authentication

Windows NTLM SSO weak. . . soooo weak.grutz.jingojango.net/presentations/NTLM SSO - DeepSec08.pdf · 2016-04-19 · grutz @ jingojango.net NTLM SSO Slide # Windows (NTLM) Authentication

Documents
Understanding the Windows SMB NTLM Authentication Weak … · 2015. 1. 12. · Understanding the Windows SMB NTLM Authentication Weak Nonce Vulnerability Ekoparty 2010 Vulnerability

Understanding the Windows SMB NTLM Authentication Weak … · 2015. 1. 12. · Understanding the Windows SMB NTLM Authentication Weak Nonce Vulnerability Ekoparty 2010 Vulnerability

Documents
Precautionary Salting Routes NG01 - whauc.com Routes PDF's/West/Salting Routes.NG01.… · Salting Routes NG01 4 KEY: NG01 (Trunk Road) NG01 (County Road) ... Gelli-tawr Nan -ckeg

Precautionary Salting Routes NG01 - whauc.com Routes PDF's/West/Salting Routes.NG01.… · Salting Routes NG01 4 KEY: NG01 (Trunk Road) NG01 (County Road) ... Gelli-tawr Nan -ckeg

Documents
Ntlm Unsafe

Ntlm Unsafe

Technology
Microsoft...  · Web viewNone of the flags specified in [MS-NLMP] section 3.1.1 are specific to NTLM. The following is a description of how POP3 uses NTLM. All NTLM messages are

Microsoft...  · Web viewNone of the flags specified in [MS-NLMP] section 3.1.1 are specific to NTLM. The following is a description of how POP3 uses NTLM. All NTLM messages are

Documents
[MS-NLMP]: NT LAN Manager (NTLM) Authentication Protocol€¦ · NT LAN Manager (NTLM) Authentication Protocol Intellectual Property Rights Notice for Open Specifications Documentation

[MS-NLMP]: NT LAN Manager (NTLM) Authentication Protocol€¦ · NT LAN Manager (NTLM) Authentication Protocol Intellectual Property Rights Notice for Open Specifications Documentation

Documents
Introduction · Web viewCapability Negotiation: The NTLM Authentication: SMTP Extension does not support negotiation of the NTLM Authentication Protocol (as specified in [MS-NLMP])

Introduction · Web viewCapability Negotiation: The NTLM Authentication: SMTP Extension does not support negotiation of the NTLM Authentication Protocol (as specified in [MS-NLMP])

Documents
Lecture XI HASHINGyap/wiki/pm/uploads/Algo/l11_BASE.pdf · basic hashing framework, including universal hashing, perfect hashing, extendible hashing, and cuckoo hashing. Hash is one

Lecture XI HASHINGyap/wiki/pm/uploads/Algo/l11_BASE.pdf · basic hashing framework, including universal hashing, perfect hashing, extendible hashing, and cuckoo hashing. Hash is one

Documents
Authentification LM NTLM Windows

Authentification LM NTLM Windows

Documents
10/17/2002CSE 202 - Hashing CSE 202 - Algorithms Hashing Universal Hash Functions Extendible Hashing

10/17/2002CSE 202 - Hashing CSE 202 - Algorithms Hashing Universal Hash Functions Extendible Hashing

Documents