List of cracked MD5 passwords

By stotti | Published: April 17, 2009

In my previous post i told you how to crack MD5 passwords using the services of websites, local applications and other means respectively.

Are you interested in lists of already cracked passwords? Some crackers provide lists of MD5 digests and their plaintext message. They contain most of the common passwords and the corresponding hash values. Here you go:

Did this list help you out? Please leave a comment or subscribe to my news feed!

Posted in security & privacy | Tagged , , , | Leave a comment

How to crack MD5 passwords online

By stotti | Published: April 14, 2009

Digg this! MD5 is a commonly used algorithm to “encrypt” passwords and store them in electronic systems for later checks of the entered password of the user. Now the MD5 algorithm has been reportedly vulnerable to security flaws. But exploiting these flaws takes an disproportional amount of computing power. This power is usually not available to security researchers or users who want to recover their password which is stored in hashed data storage. This article tells you how to crack MD5 passwords in a more convenient way!

Dia 122: Desbloqueado
Creative Commons License photo credit: Freddy The Boy

Taking the one-way street: how to calculate MD5 digests

First, some theory: actually a MD5 password is not encrypted but converted to a so called message digest. But what is a message digest? And how to calculate it? The digest ist the outcome of a so called cryptographic hash function, such as MD5:

A cryptographic hash function is a deterministic procedure that takes an arbitrary block of data and returns a fixed-size bit string, the hash value, such that an accidental or intentional change to the data will almost certainly change the hash value. In many contexts, especially telecommunications, the data to be encoded is often called the “message”, and the hash value is also called the message digest or simply digest.

For a more scientifical description see this post by the RSA labs.

You can convert messages to MD5 digests using the MD5 encoder of the mainframe8 network. It provides a browser integration, so that you can encode directly from the search lookup field of the browser (Internet Explorer, Mozilla Firefox and Google Chrome are supported). This is a great time-saving feature!

Now for the fun part: cracking a MD5 password

There is a variety of services that help you reconstruct the original message that lead to the digest. Most of them follow the “Time-Memory Trade Off” or informally called “Rainbow table” approach. Rainbow tables, you ask?

Project RainbowCrack explains it well:

The straightforward way to crack hash is brute force. In brute force approach, all candidate plaintexts and corresponding hashes are computed one by one. The computed hashes are compared with the target hash. If one of them matches, the plaintext is found. Otherwise the process continues until finish searching all candidate plaintexts.

In time-memory tradeoff approach, the task of hash computing is done in advance with the results stored in files called “rainbow table”. After that, hashes can be looked up from the rainbow tables whenever needed. The pre-computation process needs several times the effort of full key space brute force. But once the one time pre-computation is complete, the table lookup performance can be hundreds or thousands times faster than brute force.

The most successful tools to crack digests use rainbow table lookups. Project RainbowCrack has benchmarks available.

Cracking MD5 hashes using web services

So, here is the close-to-complete list of publicly available MD5 password crackers. All have been tested by me and sorted by the outcome of a statistical approach. The number in the brackets state how many hashes have been cracked out of 10.

Warning: most of the websites below provide a tool to generate MD5 hashes as well. But beware, some of these tools insert the generated hash into their rainbow table. So your generated digest will be instantly crackable by using this website! Instead you should use this MD5 encoder that never saves your inserted data nor the generated hash.

  • (5/10) www.tmto.org – Searches several databases. Seems to have a large amount of data. My tests have proven this service as quite reliable. Fast.
  • (5/10) md5.noisette.ch – meta-search, works well
  • (4/10) md5decryption.com
  • (4/10) www.c0llision.net – distributed approach. Usable via web and IRC. Free open slots are rare.
  • (4/10) www.netmd5crack.com – Contains 171,392,210 unique entries in the database. You can insert new phrases to the database.
  • (4/10) www.md5decrypter.com – Currently serving around 810,000 hashes.
  • (4/10) md5hashcracker.appspot.com
  • (4/10) www.hashhack.com
  • (4/10) isc.sans.edu – Surprised to see an .edu top level domain among this list, aren’t you? This MD5 hash database is operated by the Internet Storm Center.
  • (4/10) www.md5crack.com – Simple but sufficient interface.
  • (4/10) passcracking.com – Same as passcracking.ru. Uses a combined technique. Register to increase priority.
  • (4/10) authsecu.com – contains over 500 million hashes (12 GB). The site itself is in French. Enter the MD5 hash to be cracked in the form field labeled “HASH MD5:” and click Déchiffrer
  • (4/10) md5.rednoize.com – Currently serving around 55,000,000 hashes. Fast.
  • (4/10) md5.web-max.ca
  • (3/10) www.cmd5.com – Reputedly the biggest hash database (4 TB) online. During my tests i could have bought five so called payment-records additionally to the mentioned three findings. So i guess their database is really good.
  • (2/10) md5.thekaine.de – uses a mixed approach (rainbow tables, dictionary attacks etc.)
  • www.shell-storm.org – Currently serving around 170,000 hashes.
  • www.md5this.com- Strange interface. Long queue.
  • www.hashchecker.com – Bruteforce approach. Seems to have a high success rate but only few free slots available. Register and pay to increase priority.
  • hashcrack.com – contains over 750 million hashes. Warning: previously unknown words will be entered into their database and will be “recoverable” for everyone later.
  • md5pass.com – does not use a very own database but a Google Custom Search Engine (CSE). The CSE indexed other websites so it acts as a meta-search engine. But my tests were not very successful.
  • md5pass.info – small service. Around 300,000 hashes in the database.

The folks at www.md5crack.com do not run their own cracker but function as a meta-search. This works by searching for the digest and its plain-text counterpart using search engines such as Google, Yahoo! etc. The article Using Google as a password cracker provides more information on this topic and how to do it manually.

Local software

You like to try cracking the hash on your local machine? Of course there are applications that will handle this as well, such as the top dogs “John the Ripper” and “Cain & Abel”:

Other services

In alternative to the mentioned services above there are other ways you can go. For example there are IRC channels with bots in them that try to crack the hashes you input. Sometimes these bots act as a bridge to web services as well. On the other side there are bulletin boards where people try to crack hashsums in a collaborative approach.

Do you know more cracking services? Please leave a comment!

Last update: December 6th, 2010

Just for the record – outdated services

  • www.milw0rm.com – The cracker of the infamous exploit database. Only few free slots available.
  • blacklight.gotdns.org – Currently serving around 2,500,000 hashes.
  • gdataonline.com – Currently serving around 2,300,000 hashes.
  • hash.db.hk – Bruteforce approach combined with rainbow tables. Provides a SHA1 cracker as well.
  • hash.insidepro.com – contains around 43 million hashes
  • plain-text.info – a quite complex system which supports different algorithms like MD5 and SHA-1. It is usable via an IRC interface.
  • igrkio.info – meta search, service temporarily not available
  • darkc0de.com – a former meta-cracker that utilizes md5decrypter.com, passcracking.ru, milw0rm.com, gdataonline.com and md5.rednoize.com
Posted in security & privacy | Tagged , , , , | 66 Comments

Description of Java hs_err error log files

By stotti | Published: March 18, 2009

I wrote on how to understand hs_err files earlier on this blog. Let’s discuss the nature of hs_err files today.

Basically a hs_err files is what you get when something goes wrong during a local Java session. Local as in using a Java Virtual Machine (JVM) locally. The HotSpot VM is the default JVM for the Java SE plattform. Hence the name of hs_err files: HotSpot Error log.

Description of JVM error files

A hs_err log file is being created by the JVM when a fatal error occurs. It contains useful debugging options for the programmers of the crashed application and it is good practice to ship these files with every bug report.

Naming conventions of JVM error files

Each log file is named in a simple scheme:

hs_err<pid>.pid

<pid> stands for a system specific process id.

File system locations of JVM error files

This information refers to JVM versions >=1.5 on Linux/Unix systems only:
When a fatal error occurs the JVM prints a short error to STDOUT and writes all other debugging information to the hs_err file (naming convention above). It tries to write this file to the current working directory. If this fails, e.g. the current directory is not writable for the process, it tries to determine a temporary directory. If no temporary directory can be found it prints all debugging information to STDOUT.

This information refers to JVM versions >=1.5 on Microsoft Windows systems only:
In most cases the hs_err log file is written to the desktop of the current user.

The location of the hs_err log file can be customized. Please use the following JVM command line option:
-XX:ErrorFile=./hs_err_pid .log
This command line option is available since JDK 6 / Java SE 6 (”Mustang”).

What can i do with JVM error files?

Normal users should sent a bug report including the hs_err file to the programmer of the application. Software developers may use the script mentioned here and read the official Java Trouble-Shooting and Diagnostic Guide.

Did this article help you? Please leave a comment or subscribe to my feed to receive more tips about Java and other coding issues!

Posted in my beloved code | Tagged , , , | 6 Comments

Moonlight 1.0 – the open-source implementation of Microsofts Silverlight

By stotti | Published: March 11, 2009

Microsoft has been promoting Silverlight as a premium plattform for Rich Internet Applikations (RIA) and as an alternative to Adobe’s Flash and AIR plattform, respectively. Silverlight is natively available for Microsoft Windows and Apple MacOS operating systems. Microsofts neglect of other operating systems such as Linux has been criticized earlier.

Long exposure by moonlight.
Creative Commons License photo credit: ColorLoose

Now i have been notified by Novell that there is a Unix/Linux implementation of Silverlight released by the Mono project. Why Novell? Because it sponsors the Mono project. Gracefully the Mono guys entitled the implementation “Moonlight” and Microsoft has given its official consent for the port.

Moonlight – the open-source Silverlight

To date there is Moonlight 1.0.1 available which implements all Silverlight 1.0 Features. Miguel, one of the main developers of Moonlight, describes what can be done with the current version in his release announcement:

Moonlight 1.0 (and Silverlight 1.0) both come with a graphics pipeline, video and audio frameworks and a javascript bridge and neither one of them contains an actual execution environment. The execution environment is the browser’s own Javascript engine. When developers build 1.0-based plugins they script all of the functionality using the browser’s own Javascript engine.

This announcement is worth reading as it characterizes the process of working together with Microsoft on this open-source project.

So what can you do with Moonlight right now? The Register summarizes it well:

The goal is to let users on Linux machines play video and enjoy the same breadth of content and quality of experience enjoyed by users running Silverlight on PCs or even Macs.

On other side there have been reports (here and here) that not all sites treat it as a 1:1 implementation of Silverlight. But this may come later.

How to get Moonlight?

You can download Moonlight from the Go-Mono website.

Scott has posted a nice walkthrough of the install process on Linux using the Firefox browser.

The future

The Moonlight development crew is heading for the Silverlight 2.0 specifications. They want to port and release them as Moonlight 2.0. This means a whole load of new features for Rich Internet Applications running on Linux.

Personally i am skeptical whether that Silverlight will be a serious competitor to Adobe AIR. I work in the field of web technology and none of the agencies I know use Silverlight as a productive plattform for RIA yet. What about you?

Posted in open source and free software, world wide webtech | Tagged , , , , | 2 Comments

Be Berlin campaign – English version online (Relaunch)

By stotti | Published: March 11, 2009

Berlin, the place to be.

IMG_090125_9673_4_5
Creative Commons License photo credit: Uli H.

be Berlin, the German capital city advertising campaign, has gone global by launching the English version of be.berlin.de. The website is based on TYPO3 and has been overhauled by my PHP-Team at Aperto. It contains a brandnew and nifty Flash application that holds all the new media and information in English.

Check it out at be.berlin.de

Posted in aperto, world wide webtech | Tagged , | Leave a comment