# Password Cracker

## Overview
This project allows users to hash passwords and check if they exist in a predefined database of commonly used passwords. The project includes functionalities to hash passwords with and without salt, as well as check hashed passwords against a known database.


### Importing Libraries and Loading Data

In this section, we will import the necessary libraries and load the salts and passwords from text files. The `hashlib` library is used for hashing passwords, while the salts and common passwords are stored in separate text files. This data will be utilized for hashing and cracking passwords later in the program.


In [12]:
import hashlib

# Load salts and passwords from files
salts = open("known-salts.txt").read().split()
passwords = open("top-10000-passwords.txt").read().split()


### Function to Crack SHA-1 Hashes

In this section, we define the `crack_sha1_hash` function, which attempts to find the original password from a given SHA-1 hash. The function takes two parameters: the hash to crack and a boolean indicating whether to use salts in the cracking process. 

- If `use_salts` is `True`, the function will concatenate each password with known salts and check if the resulting hash matches the given hash.
- If `use_salts` is `False`, it will simply hash each password in the list and compare it to the provided hash. 

If a match is found, the original password is returned; otherwise, it returns a message indicating that the password is not in the database.


In [13]:
def crack_sha1_hash(hash, use_salts=False):
    password = ''
    
    if use_salts:
        for ps in passwords:
            for x in salts:
                pass_salt = x + ps
                if hashlib.sha1(pass_salt.encode()).hexdigest() == hash:
                    password = ps
            for x in salts:
                pass_salt = ps + x
                if hashlib.sha1(pass_salt.encode()).hexdigest() == hash:
                    password = ps
    else:
        for ps in passwords:
            if hashlib.sha1(ps.encode()).hexdigest() == hash:
                password = ps

    if password:
        return password
    else:
        return "PASSWORD NOT IN DATABASE"


### Function to Hash a Password

In this section, we define the `hash_password` function, which takes a user-provided password and generates its SHA-1 hash. The function performs the following steps:

1. **Hashing**: It converts the input password into a hashed format using the SHA-1 algorithm.
2. **Checking Existing Passwords**: It checks if the provided password already exists in the `top-10000-passwords.txt` file.
   - If the password exists, it informs the user and displays the hashed password.
   - If the password does not exist, it appends the new password to the file and notifies the user of the newly hashed password.

This function ensures that users can safely create new passwords and track their hashed values.


In [8]:
def hash_password(password):
    # Hash the new password using SHA-1
    hashed_password = hashlib.sha1(password.encode()).hexdigest()
    
    # Check if the password already exists in the top-10000-passwords.txt file
    with open("top-10000-passwords.txt", "r") as f:
        existing_passwords = f.read().splitlines()
    
    if password in existing_passwords:
        # If the password already exists, inform the user
        print(f"The password '{password}' already exists in the database.")
        print(f"Hashed password: {hashed_password}")
    else:
        # Append the new password to the top-10000-passwords.txt file
        with open("top-10000-passwords.txt", "a") as f:
            f.write(password + "\n")
        
        # Inform the user of the new hashed password
        print(f"Your password '{password}' has been hashed: {hashed_password}")

### Main Function to Hash or Crack Passwords

In this section, we define the `main` function, which serves as the entry point for the user interaction. The function performs the following steps:

1. **User Choice**: It prompts the user to choose between hashing a password or cracking a hashed password by entering `1` or `2`.
2. **Hashing Option**: If the user selects `1`, it asks for the password to hash and calls the `hash_password` function to generate the hashed password.
3. **Cracking Option**: If the user selects `2`, it prompts for the hashed password to crack and whether to use salts. The `crack_sha1_hash` function is then called with these inputs to attempt to find the original password.
4. **Invalid Input Handling**: If the user inputs anything other than `1` or `2`, it informs them of the invalid choice.

This function enables the user to easily interact with the password hashing and cracking functionality of the program.

In [None]:
def main():
    # Ask the user if they want to hash or crack a password
    choice = input("Would you like to (1) hash a password or (2) crack a password? Enter 1 or 2: ")
    
    if choice == '1':
        # Hash a password
        password = input("Please enter your password to hash: ")
        hash_password(password)
    
    elif choice == '2':
        # Crack a password
        hashed_password = input("Please enter the hashed password you want to crack: ")
        use_salts = input("Do you want to use salts? (yes/no): ").strip().lower() == 'yes'
        result = crack_sha1_hash(hashed_password, use_salts)
        print(f"Cracked password: {result}")
    
    else:
        print("Invalid choice. Please enter 1 or 2.")

# Run the main function
if __name__ == "__main__":
    main()
