Join GitHub today
GitHub is home to over 28 million developers working together to host and review code, manage projects, and build software together.Sign up
Add new algorithm: Woltlab Burning Board with short salts #957
Algorithm is sha1($salt.sha1($salt.sha1($pass))), difference from WBB3 is in that salt length is fixed in 9 chars.
It is actually a variant of Woltlab Burning Board and it has been seen on some new sites (I have 11k private hashes of this type).
Salt length: 9 chars
Sample hash/salt/plain pairs:
atom got me to open this thread from here: https://hashcat.net/forum/thread-6166.html
changed the title from
Add new algorithm: Woltlab Burning Board with short hashes
Add new algorithm: Woltlab Burning Board with short salts
Jan 8, 2017
That looks like hashes from OpenCart and is supported since hashcat v3.10
Hops, that's absolutely true and thanks for your awesome reply! I have searched a lot before posting but didn't find this info... even atom has told me to request a new mode here.
I still cannot use my Iris GPU in OSX on this hash, but that's another story...
I was the one who added this to hashcat that's why I've noticed the scheme and especially the password length restriction.
Since this has been resolved, please close this issue.
Well, it would be great if somebody can investigate what is going on here about the salt length...
-m 8400 = WBB3 (Woltlab Burning Board) already supports the algorithm sha1($salt.sha1($salt.sha1($pass))), but of course (mostly because of optimizations) restricts the salt to exactly 40 bytes.