Thread Rating:
  • 3 Vote(s) - 5 Average
  • 1
  • 2
  • 3
  • 4
  • 5
InterPals Database - Leaked, Download!
How to dehash the passwords?
(03-21-2018, 02:11 AM)pannigapahe Wrote:  It seems that at the end of the file has some sort of 'insufficient' hashes, I am not sure personally whats going on, but as stated previously this does seem incomplete with not all the users.

I confirm that. The end of the file is uncomplete Exclamation
(11-13-2017, 02:54 PM)Arvectus Wrote:  Thanks for sharing, a lot of people would need this,

I gotta say .... this is one seriously messed up 600mb file due to weird line breaks.

I had to run at least 3 regex find and replace to try and fix the line breaks, and its still messy.

There is most probably a more original copy than this somewhere, without insane line breaks.

just downloaded and noted that... its gonna take gd time to fix it if at all 100% fixable Tongue
thanks for this! awesome
Thank you ! Been looking for this :D
I was also looking for this. Thank you!
I dont think this one works
Nice thank you very much !
Nice one, this one is def legit.
download and have a look
thank you very much!
were you about to dehash ???

(06-19-2018, 01:08 PM)JoanCoast Wrote:  Are you sure the password format is MD5 / phpBB (mode 400 in hashcat) ?
To me it seems it is bcrypt (mode 3200 in hashcat)...

So let me clarify...
The database fields are : name, username, email, birth, city, state, country, password_hash, password_enc, password_md5
prathiba amynamy [email protected] 1981-09-01 Villiers-le-Bel $2y$10$7S3bVQN6UmKiZ0pzN/0w6.m71VK6bWXCxkHHMxj0gcZ2U2GG3mJrq GyA+cuVFRxVff2dlbjwcXHKrpOR7cWu0/X04GKmTJEQ= 038312a74d25bdf2c71bd7fff601593d
Keylla Keylla [email protected] 1984-05-24 João Pessoa Brazil $2y$10$yy2tlyqN2Uomfs4eBGY10ezSuNZZCwaZEAAT75QlmBew/q2stDDkm /E9qgAhjqirvpGO+Fr4eeyw6mhsB7HlRhBRqSKgDVz0= b4e93587f277b2e203ba7abd0e42fdc0

password_hash is the bcrypt hash ($2y$10$) of the password.
I do not know what password_enc is
and password_md5 is the MD5 hash of the password.
So for an entry there are 2 ways to crack the password: either you crack the bcrypt one (mode 3200 with hashcat) which is very very slow or you target the MD5 one (mode 0 with hashcat) which is very fast.

In the first example above the password is 1+1=deux
and the second one is 007JamesBond

Attacking the MD5 allowed me to dehash ~95% of the passwords. If some of you are interested, let me know and I'll publish a "dehash" version.

Possibly Related Threads...
Thread Author Replies Views Last Post
Star Adobe Database - Leaked, Download! Omnipotent 360 60,135 2 hours ago
Last Post: Piax
Star Database - Leaked, Download! erwincho 544 120,811 2 hours ago
Last Post: quangtuyeens
User VNG Zing Database - Leaked, Download! blackside 659 83,450 2 hours ago
Last Post: quangtuyeens
Thumbsup Tumblr Database - Leaked, Download! Omnipotent 359 70,549 9 hours ago
Last Post: Piax
Thumbsup Database - Leaked, Download! acidwarrior 212 40,099 10 hours ago
Last Post: Piax

Users browsing this thread: 1 Guest(s)