SMF 1.1.4 password hash cracker
I couldn't find any good hash cracker for SMF. This one isn't actually finished but it has the most used/important function being dictonary attack. The menu/usage is quite simple:
Menu..
1. Numeric attack
2. Alphabetic attack or whatever
3. Mix 'em up Johnny
4. Dictionary attack
< Choice >
Of course, this is not a hack tool of any kind. It just helps you recovering passwords that are hashed in the database. You'll need a Perl executer though and the DIGEST::Sha1 extension but this comes with most Perl distributions already. Download the source code here. A screenshot of the tool included below.
$ perl crack.pl
Simple Machines Forum v1.1.4 password hash cracker
by Iron - http://www.randombase.com / http://www.perlforums.orgMenu..
1. Numeric attack
2. Alphabetic attack or whatever
3. Mix 'em up Johnny
4. Dictionary attack
< Choice > 2
[+]Username of the target: test_user
[+]Password hash of the target: d07d7168b541aac18a2fed4252ae9f416bd463e3
[+]Cracking... could take a while
[+]Sweet! Found the password: passw
[...] Hey, this isn’t new! This is the exact same thing as my previous Simple Machines Forum 1.1.4 password hash cracker! Yes, it is. They didn’t change the method this time, it’s still a very basic SHA1 encryption. The download can be found here. If you’re interested in a more extensive explanation, head over to my old post. [...]
Thanks for releasing this… only trouble is, I haven’t the faintest clue how to use it. (not a programmer) Could you explain? I gather that you need a Perl Executor (google search doesn’t come up with anything concrete on getting one), but I have no idea where to put the smfcrack.txt file, or what to actually do with it.
Thanks!
It’s quite simple actually, you have to download the smfcrack file and rename it to a perl extension, .pl. Then you open up your Perl executer (assuming you’re on Windows, use ActivePerl). Place the Perl file somewhere near towards your C: drive, and open a command prompt by typing “cmd” in Start => Run
Then use cd “c:/pathWhereYouPlacedThePerlScript” and once in that folder, type:
perl smfcrack.pl
Easy as that.
Thank for you Sir Iron
it’s great script, but we are waiting from you to write the state 3( Mix ‘em up Johnny), its very important for encode hashed password which coded by numbers and charecters
wait you dear
have a nice times
Thanks
Tiger
Well bro, I don’t think I’m going to finish that part, it’s typical of me to not finish stuff I’m supposed to do. I’m really busy now with other stuff and school has started again for this poor fellow ;).
please finish it :P