TryHackMe:Crack The Hash:Writeup:

fig 1.0

Hi,

This post is about Crack The Hash room on TryHackMe.Com. This room is free for everyone so everyone can join it. Its challenge us to crack some hashes.

Description: A guide to crack hashes of crack the hash room on tryhackme.

To identify and crack the hashes I referred to some websites.

1. https://hashes.com/en/decrypt/hash
2. https://crackstation.net/

Or some inbuilt tools in Kali Linux which are

1. Hash-Identifier || or install it by typing “sudo apt install hash-identifier” 3. Hashid || or install it by typing “sudo apt install hashid”
2. Hashcat || or install it by typing “sudo apt install hashcat”

— — — — — — — — — — — Let the party begin — — — — — — — — —

— — — Task 1:Level 1 — — —

Hash 1

48bb6e862e54f2a795ffc4e541caed4d

Lets find the hash type by hash-identifier and we got its MD5.shown in fig 2.0.

fig- 2.0

Lets crack it online first on crack station. Wow we crack it. Show in fin 3.0.

fig- 3.0

Password — easy

— — — — — — — — — — — — — — — — — — — — — — — — — — -

Hash 2

CBFDAC6008F9CAB4083784CBD1874F76618D2A97

fig- 4.0

Its show its SHA-1. Lets crack it on crackstation

fig- 5.0

Password — password123

— — — — — — — — — — — — — — — — — — — — — — — — — — — -

Hash 3

1C8BFE8F801D79745C4631D09FFF36C82AA37FC4CCE4FC946683D7B336B63032

fig- 6.0

Here we can see it SHA256 type so lets crack it.

fig- 7.0

Password — letmein

— — — — — — — — — — — — — — — — — — — — — — — — — — — — — -

Hash 4

$2y$12$Dwt1BZj6pcyc3Dy1FWZ5ieeUznr71EeNkJkUlypTsgbX1H68wsRom

Here we use hashid for check hash type.

fig- 7.0

Here we got it.Lets crack it by hashcat(it will take long time) by following command.

hashcat -a 0 -m 3200 [hash file] [location/rockyou.txt]

fig- 8.0

Password — bleh

— — — — — — — — — — — — — — — — — — — — — — — — — — — — — — -

Hash 5

279412f945939ba78ce0758d3fd83daa

fig- 9.0

Its MD4 type hash. Lets crack it.

fig- 9.0

Password — Eternity22

— — — — — — — — — — — — — — — — — — — — — — — — — — — — — -

— — — Task 2:Level 2 — — —

hash 6

F09EDCB1FCEFC6DFB23DC3505A882655FF77375ED8AA2D1C13F640FCCC2D0C85

fig- 10.0

Its SHA256 type Hash.

fig- 11.0

Password — paule

— — — — — — — — — — — — — — — — — — — — — — — — — — — — — — -

hash 7

1DFECA0C002AE40B8619ECF94819CC1B

fig- 12.0

Its a NTLM type hash.

fig- 13.0

Password — n63umy8lkf4i

— — — — — — — — — — — — — — — — — — — — — — — — — — — -

Hash 8

$6$aReallyHardSalt$6WKUTqzq.UQQmrm0p/T7MPpMbGNnzXPMAXi4bJMl9be.cfi3/qxIf.hsGpS41BqMhSrHVXgMpdjS6xeKZAs02.

Salt: aReallyHardSalt

fig- 14.0

its SHA-512 type hash.

We use hashcat for crack this hash by following command:

hashcat -a 0 -m 1800 [hash file] [location/rockyou.txt]

fig- 15.0

Password — waka99

— — — — — — — — — — — — — — — — — — — — — — — — — — — — — — -

Hash 9

e5d8870e5bdd26602cab8dbe07a942c8669e56d6

Salt: tryhackme

fig- 16.0

It Hint we can see its HMAC-SHA1 but its salted so we use ‘HMAC-SHA1 (key = $salt)’.

Your hash should be written like this “e5d8870e5bdd26602cab8dbe07a942c8669e56d6:tryhackme”

We be use following command-

hashcat -a 0 -m 160 [hash_file] [location/rockyou.txt]

fig- 17.0

Password — 481616481616

— — — — — — — — — — — — — THANK YOU — — — — — — — — — — — —