Results 1 to 9 of 9

Thread: Recognize this encoding?

Hybrid View

  1. #1
    My life is this forum thorin's Avatar
    Join Date
    Jan 2010
    Posts
    2,629

    Default Recognize this encoding?

    Does anyone recognize this encoding/hashing scheme?

    NeXhvl7xclp163waevE9Eg==
    QsWGNQXLkxqDO+HgmlVSSw==


    Including the equal signs it's 24 characters long (22 without).

    I thought the trailing equal signs might give me a clue but I've been unable to match them to anything.

    Even tried encoding the original strings via multiple encoders/hashes, via tools like:
    http://www.paulschou.com/tools/xlate/
    http://www.yellowpipe.com/yis/tools/encrypter/index.php
    http://www.businessinfo.co.uk/labs/h...hackvertor.php
    I'm a compulsive post editor, you might wanna wait until my post has been online for 5-10 mins before quoting it as it will likely change.

    I know I seem harsh in some of my replies. SORRY! But if you're doing something illegal or posting something that seems to be obvious BS I'm going to call you on it.

  2. #2
    Senior Member Thorn's Avatar
    Join Date
    Jan 2010
    Location
    The Green Dome
    Posts
    1,509

    Default

    Can you tell us what it's from?

    If it's possible that the data is from any kind of mainframe or mini (e.g. IBM AS400) it could be EBCDIC. The ASCII equals sign is the EBCDIC "NAK" character. The NAK is often used as a separator in databases and similar applications.
    Thorn
    Stop the TSA now! Boycott the airlines.

  3. #3
    My life is this forum thorin's Avatar
    Join Date
    Jan 2010
    Posts
    2,629

    Default

    No problemo, shoulda included that detail up-front I guess.

    It's actually a password hash used on a website....in a GET request

    Code:
    login.jsp?user=12345&password=NeXhvl7xclp163waevE9Eg==
    kind of thing.
    I'm a compulsive post editor, you might wanna wait until my post has been online for 5-10 mins before quoting it as it will likely change.

    I know I seem harsh in some of my replies. SORRY! But if you're doing something illegal or posting something that seems to be obvious BS I'm going to call you on it.

  4. #4
    Junior Member drpepperONE's Avatar
    Join Date
    Nov 2007
    Posts
    51

    Default

    Quote Originally Posted by thorin View Post
    No problemo, shoulda included that detail up-front I guess.

    It's actually a password hash used on a website....in a GET request

    Code:
    login.jsp?user=12345&password=NeXhvl7xclp163waevE9Eg==
    kind of thing.
    Hi thorin you could use this online hash generator to compare the hash that you have with one in list and test same hash generation.

    http://www.insidepro.com/hashes.php?lang=eng
    Use your Brain, don't be slave!!!!

  5. #5
    Junior Member
    Join Date
    Feb 2007
    Posts
    73

    Default

    drpepperONE:


    Nice link... Bookmarked!

  6. #6
    My life is this forum thorin's Avatar
    Join Date
    Jan 2010
    Posts
    2,629

    Default

    Quote Originally Posted by drpepperONE View Post
    Hi thorin you could use this online hash generator to compare the hash that you have with one in list and test same hash generation.

    http://www.insidepro.com/hashes.php?lang=eng
    No love, but great URL. Thanks!
    I'm a compulsive post editor, you might wanna wait until my post has been online for 5-10 mins before quoting it as it will likely change.

    I know I seem harsh in some of my replies. SORRY! But if you're doing something illegal or posting something that seems to be obvious BS I'm going to call you on it.

  7. #7
    Junior Member drpepperONE's Avatar
    Join Date
    Nov 2007
    Posts
    51

    Default

    Quote Originally Posted by thorin View Post
    No love, but great URL. Thanks!
    Hi Thorin what do you wanna do with this hash string??

    login.jsp?user=12345&password=NeXhvl7xclp163waevE9 Eg==
    It's not possible recovery original text when it's used on a hash function.

    A one-way hash function takes some plaintext and translates it into a specific hash. The hash is unique to the message (like a fingerprint is to a person). The hash is also non-reversable, hence the name one-way.
    To break-in hash function is only possible if there is an bug/exploit in it.

    For example there is an Theory but real bug in sha-1 hash function based on collition.

    http://www.schneier.com/blog/archive...a1_broken.html
    Use your Brain, don't be slave!!!!

  8. #8
    Member elazar's Avatar
    Join Date
    Sep 2007
    Posts
    217

    Default

    After Base64 decoding you got 16 bytes, only the 1st hash has a trailing =, my guess is salted MD2,4,5...

    Elazar
    dd if=/dev/urandom of=/mybrain

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •